smallzhong / hide_execute_memory
隐藏可执行内存
☆246Updated 11 months ago
Alternatives and similar repositories for hide_execute_memory:
Users that are interested in hide_execute_memory are comparing it to the libraries listed below
- shellcode 生成框架☆250Updated 2 years ago
- 研究和移除各种内核回调,在anti anti cheat的路上越走越远☆172Updated 2 years ago
- 大数字驱动逆向代码☆71Updated last year
- Mhy Exp (exploit signed driver)☆140Updated 2 years ago
- 内核级别隐藏指定窗口☆303Updated 3 years ago
- 过去写的一些Windows安全研究相关代码☆134Updated 6 years ago
- IDA Python script for generating Windows x86 shellcode with one click☆36Updated last year
- ☆82Updated 2 weeks ago
- 利用物理内存映射,实现虚拟内存的伪隐藏☆81Updated 2 years ago
- windwos内核研究与驱动Code☆61Updated 3 years ago
- dll转shellcode工具☆100Updated 4 years ago
- 尽量汇聚反调试资源和利用对抗技术☆176Updated 8 months ago
- 沙箱测试,测评国内常见沙箱的代码与结论☆100Updated 3 years ago
- 一些使用过期或者注销证书的技术☆225Updated 5 years ago
- ☆197Updated last year
- 将shellcode注入dwm.exe以进行屏幕截取☆307Updated 2 years ago
- sc4cpp is a shellcode framework based on C++☆88Updated 3 years ago
- ��复现《EDR的梦魇:Storm-0978使用新型内核注入技术“Step Bear”》☆122Updated 3 months ago
- 无痕注入1☆71Updated 3 years ago
- Radical Windows ARK☆219Updated 2 months ago
- 简单安排一下 autochk.sys 这个rootkit☆71Updated last year
- hijack dll Source Code Generator .☆192Updated 6 months ago
- ☆110Updated 5 years ago
- Remote Download and Memory Execute for shellcode framework☆91Updated 2 years ago
- �整合Pluto-Obfuscator和goron部分混淆,移植到LLVM-16.0.x,使用NewPassManager☆119Updated last year
- It's a kernel-based keylogger for Windows x86/x64.☆133Updated 2 years ago
- 模仿操作系统,加载pe文件到内存中☆74Updated 5 years ago
- 《Windows 内核安全编程技术实践》 系列丛书,探索 Anti RootKit 反内核工具核心原理与技术实现细节。☆46Updated 2 years ago
- Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查☆93Updated last year
- WINDOWS黑客編程技術詳解 [Windows-Hack-Programming backup]☆42Updated 5 years ago