隐藏可执行内存
☆272Apr 27, 2025Updated last year
Alternatives and similar repositories for hide_execute_memory
Users that are interested in hide_execute_memory are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 内核级别隐藏指定窗口☆323Feb 9, 2022Updated 4 years ago
- 将shellcode注入dwm.exe以进行屏幕截取☆368Mar 22, 2022Updated 4 years ago
- Windows X64 mode use seh in manual mapped dll or manual mapped sys☆77Oct 10, 2022Updated 3 years ago
- Kernel dwm render☆172Oct 10, 2023Updated 2 years ago
- ☆81Dec 24, 2021Updated 4 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- 不使用3环挂钩进行DWM桌面绘制☆82Dec 9, 2021Updated 4 years ago
- 沙箱测试,测评国内常见沙箱的代码与结论☆109Jul 3, 2021Updated 4 years ago
- 从MmPfnData中枚举进程和页目录基址☆215Aug 18, 2023Updated 2 years ago
- 研�究和移除各种内核回调,在anti anti cheat的路上越走越远☆180Aug 26, 2022Updated 3 years ago
- Hide codes/data in the kernel address space.☆187May 8, 2021Updated 5 years ago
- 基于Golang实现的Shellcode内存加载器,共实现3中内存加载shellcode方式,UUID加载,MAC加载和IPv4加载,目前能过主流杀软(包括Windows Defender)☆252Dec 16, 2021Updated 4 years ago
- Kernel DLL Injector using NX Bit Swapping and VAD hide for hiding injected DLL☆221Nov 12, 2020Updated 5 years ago
- ☆228Mar 11, 2023Updated 3 years ago
- Hook NtDeviceIoControlFile with PatchGuard☆106May 10, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- 通过反射DLL注入、Win API、C#、以及底层实现NetUserAdd方式实现BypassAV进行增加用户的功能,实现Cobalt Strike插件化☆342Apr 10, 2022Updated 4 years ago
- CS http Dynamic Encrypt Bridge.☆47Nov 12, 2021Updated 4 years ago
- 影子用户 克隆☆232Dec 30, 2021Updated 4 years ago
- ☆143Dec 10, 2022Updated 3 years ago
- 可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。☆108Sep 1, 2022Updated 3 years ago
- InfinityHookPro Win7 -> Win11 latest☆555Feb 7, 2023Updated 3 years ago
- ☆194May 1, 2023Updated 3 years ago
- 用CSharp写的一款信息搜集工具,目前支持Navicat、TeamView、Xshell、SecureCRT产品的密码解密☆251Aug 26, 2020Updated 5 years ago
- a Windows kernel Pdb parsing and downloading library that running purely in kernel mode without any R3 programs.☆180Sep 13, 2024Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- 一个用来做windows内核hook的框架☆188Apr 29, 2025Updated last year
- ShotHv☆155Mar 8, 2022Updated 4 years ago
- Bypass AV 用户添加☆169Dec 30, 2021Updated 4 years ago
- 免杀技术大杂烩---乱拳也打不死老师傅☆1,096Mar 29, 2021Updated 5 years ago
- 绕3环的shellcode免杀框架☆571Mar 19, 2021Updated 5 years ago
- 强制关闭360 需要管理员权限☆171Feb 6, 2022Updated 4 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆119Feb 8, 2022Updated 4 years ago
- shellcode 生成框架☆305Mar 23, 2022Updated 4 years ago
- ☆134Sep 24, 2023Updated 2 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Example of reading process memory through kernel special APC☆111Apr 21, 2023Updated 3 years ago
- Hiding the window from screenshots using the function win32kfull::GreProtectSpriteContent☆648Dec 26, 2024Updated last year
- Page fault hook use ept (Intel Virtualization Technology)☆200Oct 19, 2016Updated 9 years ago
- The Kernel-Mode Winsock library, supporting TCP, UDP and Unix sockets (DGRAM and STREAM).☆288Apr 30, 2026Updated last month
- 创建服务持久化☆108Apr 26, 2021Updated 5 years ago
- ☆74Jul 23, 2021Updated 4 years ago
- 替代PrintBug用于本地提权的新方式,主要利用MS-EFSR协议中的接口函数 借鉴了Potitpotam中对于EFSR协议的利用,实现了本地提权的一系列方式 Drawing on the use of the EFSR protocol in Potitpotam, …☆150Mar 13, 2022Updated 4 years ago