smallzhong / hide_execute_memory
隐藏可执行内存
☆248Updated last year
Alternatives and similar repositories for hide_execute_memory:
Users that are interested in hide_execute_memory are comparing it to the libraries listed below
- shellcode 生成框架☆261Updated 2 years ago
- 研究和移除各种内核回调,在anti anti cheat的路上越走越远☆172Updated 2 years ago
- 内核级别隐藏指定窗口☆306Updated 3 years ago
- 大数字驱动逆向代码☆71Updated last year
- Mhy Exp (exploit signed driver)☆140Updated 2 years ago
- 利用物理内存映射,实现虚拟内存的伪隐藏☆84Updated 2 years ago
- 将shellcode注入dwm.exe以进行屏幕截取☆314Updated 2 years ago
- 驱动加载器 -> 利用iqvw64e.sys映射驱动☆55Updated 4 years ago
- 一些使用过期或者注销证书的技术☆228Updated 5 years ago
- dll转shellcode工具☆100Updated 5 years ago
- 过去写的一些Windows安全研究相关代码☆135Updated 6 years ago
- 沙箱测试,测评国内常见沙箱的代码与结论☆100Updated 3 years ago
- windwos内核研究与驱动Code☆62Updated 3 years ago
- 无痕注入1☆72Updated 3 years ago
- ☆197Updated 2 years ago
- IDA Python script for generating Windows x86 shellcode with one click☆37Updated last year
- 简单安排一下 autochk.sys 这个rootkit☆71Updated 2 years ago
- 整合Pluto-Obfuscator和goron�部分混淆,移植到LLVM-16.0.x,使用NewPassManager☆121Updated last year
- 远程注入无导入函数dll,自动重定位以后内存加载dll☆45Updated 5 years ago
- It's a kernel-based keylogger for Windows x86/x64.☆139Updated 2 years ago
- 复现《EDR的梦魇:Storm-0978使用新型内核注入技术“Step Bear”》☆128Updated 4 months ago
- 尽量汇聚反调试资源和利用对抗技术☆176Updated 9 months ago
- 让Etwhook再次伟大! Make InfinityHook Great Again!☆129Updated 3 years ago
- 基于sunday算法的内存快速搜索,搜索2GB内存只需1秒☆73Updated 5 years ago
- 40行代码检测到大部分CobaltStrike的shellcode☆286Updated 3 years ago
- Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查☆93Updated last year
- ☆176Updated last year
- hijack dll Source Code Generator .☆197Updated 7 months ago
- Hide processes, files, services in Windows ring3☆23Updated 9 months ago
- sc4cpp is a shellcode framework based on C++☆88Updated 3 years ago