windows内核安全与驱动开发代码
☆12Apr 4, 2020Updated 5 years ago
Alternatives and similar repositories for Win-Drv
Users that are interested in Win-Drv are comparing it to the libraries listed below
Sorting:
- Packet Injection With WFP☆16Feb 20, 2023Updated 3 years ago
- Former UEFI Firmware Rootkit Replicating MoonBounce / ESPECTRE☆11Jun 14, 2022Updated 3 years ago
- ☆139Mar 21, 2020Updated 5 years ago
- Collection of Windows kernel driver examples, offering insights into Windows internals, rootkit evasion, and advanced driver development.☆12Nov 23, 2023Updated 2 years ago
- Files for http://blog.deniable.org/posts/windows-callbacks/☆77Feb 26, 2022Updated 4 years ago
- Source code on the 1.44MB 3.5 floppy accompanying the Windows NT File System Internals book.☆20Jul 31, 2019Updated 6 years ago
- iSwordSDK (Provide Powerful Kernel API For Ring3 Applications)☆15Mar 25, 2022Updated 3 years ago
- Basic experimentation with Windows drivers.☆17Mar 3, 2023Updated 3 years ago
- Final Transparent encrypted version☆14Jan 10, 2017Updated 9 years ago
- azazel反编译器 ftrace函数追踪 elfdemon 代码注入 lpv,skeksi,saruman 病毒 quenya 重建进程☆19Aug 26, 2018Updated 7 years ago
- https://key08.com/index.php/2021/10/19/1375.html☆71May 11, 2022Updated 3 years ago
- ☆15Jul 22, 2024Updated last year
- Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.☆22Sep 4, 2023Updated 2 years ago
- ☆24Jul 15, 2023Updated 2 years ago
- 进程保护、进程过滤的小工程、主要亮点是在内核中对操作系统中的用户进行管理☆16Nov 5, 2014Updated 11 years ago
- Register a callback from a Manually mapped kernel module☆16Feb 1, 2022Updated 4 years ago
- PE文件解析和加壳工具☆18Feb 21, 2023Updated 3 years ago
- A Linux/Windows Ransomware PoC written in Python, Go and C☆16Jun 17, 2023Updated 2 years ago
- Static Library For Windows Drivers☆41Dec 13, 2025Updated 2 months ago
- Take back control of Windows Code Integrity, no exploits or patching required! Requires that you control your own Platform Key (PK).☆52Aug 22, 2022Updated 3 years ago
- The common parts of the Sysinternals Sysmon tool shared between the Windows and Linux versions.☆64Jan 26, 2026Updated last month
- API Hammering with C++20☆50Jul 21, 2022Updated 3 years ago
- File system minifilter driver for Windows to block symbolic link attacks.☆51Dec 16, 2020Updated 5 years ago
- A small fun project to protect a file from writing using ftrace hooking.☆24Sep 20, 2021Updated 4 years ago
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems☆28Aug 6, 2018Updated 7 years ago
- ☆25May 21, 2021Updated 4 years ago
- This is my ransomware from my video: https://www.youtube.com/watch?v=niRclD6ewXA&t=11s&ab_channel=CYBERSOLDIER☆18Apr 12, 2022Updated 3 years ago
- WinDbg-Samples ExdiGdbSrv fork 修复了一部分Vmware调试的问题☆32Jul 10, 2023Updated 2 years ago
- windows系统下fat32及ntfs删除文件恢复☆54Mar 10, 2019Updated 6 years ago
- Repository of vulnerabilities disclosed by ESET☆29Jul 13, 2022Updated 3 years ago
- A POC for Windows Extension Host hooking☆24Jul 13, 2019Updated 6 years ago
- 管道实现的进程间通信库,多线程支持☆31Aug 28, 2018Updated 7 years ago
- Small visualizator for PE files☆70Sep 20, 2023Updated 2 years ago
- A ProcMon-esque tool for monitoring Windows Kernel Drivers☆63May 31, 2021Updated 4 years ago
- DTrace for Windows in userspace; Frontend to ETW☆27Oct 4, 2022Updated 3 years ago
- Runtime smm module loader☆37Jan 12, 2023Updated 3 years ago
- ☆24Feb 18, 2018Updated 8 years ago
- Sysark全称system anti-rootkit,是我学习内核写的工具(2013年的代码,后续不会再更新),里面基本上所有的功能都是用内核实现的。这里只是实现了反rootkit部分功能,作为工具的话,本人觉得还欠完善,但作为学习,或有人需要。目前针对的是XP SP2,…☆27Dec 26, 2017Updated 8 years ago
- An SSDT hook for Windows☆62Oct 27, 2017Updated 8 years ago