huoji120 / safe_duckView external linksLinks
一款linux下的安全产品目的是满足个人安全需求有SSH爆破防护和SYN攻击扫描防护功能,基于netfilter,
☆23Dec 2, 2023Updated 2 years ago
Alternatives and similar repositories for safe_duck
Users that are interested in safe_duck are comparing it to the libraries listed below
Sorting:
- 简单安排一下 autochk.sys 这个rootkit☆73Mar 7, 2023Updated 2 years ago
- 常见反沙箱反虚拟机总结☆20Nov 13, 2024Updated last year
- bootkit驱动映射,三环进程注入加载指定模块☆14Oct 8, 2024Updated last year
- 重构Beacon☆15Aug 25, 2024Updated last year
- 复现《EDR的梦魇:Storm-0978使用新型内核注入技术“Step Bear”》☆161Oct 27, 2024Updated last year
- Windows Research Kernel☆37Sep 22, 2025Updated 4 months ago
- 蓝队应急工具☆541Jun 10, 2024Updated last year
- sAoccec something about ossec☆17Apr 27, 2013Updated 12 years ago
- 戎码之眼是一个window上的基于att&ck模型的威胁监控工具.有效检测常见的未知威胁与已知威胁.防守方的利剑☆536Oct 25, 2023Updated 2 years ago
- 通过分析流量,快速检查手机是否被APT攻击☆35Oct 19, 2025Updated 3 months ago
- 基于UC的启发式杀毒引擎[还没做完]☆35Mar 28, 2021Updated 4 years ago
- A program to read and modify the memory of other processes.☆20May 19, 2023Updated 2 years ago
- defender_database☆24Oct 31, 2023Updated 2 years ago
- libcodecs is part of the "Huorong eXtendible Stream Scan Engine" project copyright by Huorong Borui (Beijing) Technology Co., Ltd.☆24Aug 17, 2015Updated 10 years ago
- a server plugin system for cs2 server,power by lua☆24Oct 25, 2023Updated 2 years ago
- Stack integrity verification to Detect SleepMask or CallStack Spoofer☆53Jul 13, 2025Updated 7 months ago
- 无痕hook探测☆45Aug 6, 2025Updated 6 months ago
- A Simple Proof Code for Extracting and Executing Shellcode from Event Logs☆27Mar 5, 2023Updated 2 years ago
- Hades is a Host-Based Intrusion Detection System based on both eBPF(kernel) and netlink/cn_proc(userspace).☆28Dec 14, 2024Updated last year
- Labyrinth, an LLVM obfuscation plugin for the New Pass Manager☆44Feb 23, 2025Updated 11 months ago
- 关于intel和amd指令行为不一样这件事☆62Apr 15, 2022Updated 3 years ago
- 沙箱测试,测评国内常见沙箱的代码与结论☆107Jul 3, 2021Updated 4 years ago
- https://key08.com/index.php/2021/10/19/1375.html☆71May 11, 2022Updated 3 years ago
- ☆26Sep 17, 2017Updated 8 years ago
- Syclover PPT☆30May 22, 2017Updated 8 years ago
- Uses Threat-Intelligence ETW events to identify shellcode regions being hidden by fluctuating memory protections☆168May 17, 2023Updated 2 years ago
- PDB Explorer 是一个能够查看微软 pdb 文件(Program DataBase,程序数据库)的工具,它能够将 pdb 文件中的 struct、union 及 enum 类型的定义以 C/C++ 的语法显示出来,特别适合 Windows 底层研究人员及 DDK …☆38Jun 2, 2015Updated 10 years ago
- CobaltStrikeDetect☆49Jun 19, 2025Updated 7 months ago
- 40行代码检测到大部分CobaltStrike的shellcode☆293Jul 25, 2021Updated 4 years ago
- FF XIV Midiplayer standalone app, for solo and ensemble (Bards of Light)☆11Dec 1, 2025Updated 2 months ago
- kernel exploit☆10Jan 14, 2025Updated last year
- 是我阅读各种源码写的笔记☆73Sep 15, 2022Updated 3 years ago
- ☆159Dec 13, 2024Updated last year
- about how to make a anti-virus engine☆106May 22, 2025Updated 8 months ago
- 简单的用python写的远控demo 执行命令 只一个心跳完成所有操作☆36Oct 7, 2022Updated 3 years ago
- Use YARA rules on Time Travel Debugging traces☆96Jul 11, 2023Updated 2 years ago
- 简单的基于llvm实现vmp保护☆225Sep 11, 2025Updated 5 months ago
- 内核级Dll注入监控,利用ETW输出和溯源☆11Dec 8, 2024Updated last year
- 简易定制化DDOS打击工具,可用于自动打击部署☆11May 10, 2023Updated 2 years ago