Hades HIDS/HIPS for Windows
☆309Oct 10, 2025Updated 5 months ago
Alternatives and similar repositories for Hades-Windows
Users that are interested in Hades-Windows are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Hades is a Host-Based Intrusion Detection System based on both eBPF(kernel) and netlink/cn_proc(userspace).☆28Dec 14, 2024Updated last year
- Windows CVE主防(HIPS/HIDS)☆58Apr 29, 2021Updated 4 years ago
- VT Hook☆52Jul 2, 2024Updated last year
- Windows Anti-Rootkit Tool☆547Dec 31, 2025Updated 2 months ago
- ☆174Sep 9, 2020Updated 5 years ago
- VM一键加壳/脱壳,全压缩,反调试等☆340Jul 6, 2024Updated last year
- It's a minifilter used for transparent-encrypting.☆342Jul 28, 2025Updated 7 months ago
- Radical Windows ARK☆252Apr 18, 2025Updated 11 months ago
- ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detecti…☆320Mar 20, 2024Updated 2 years ago
- Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)☆305Nov 30, 2024Updated last year
- Analyze Windows x64 Kernel Memory Layout☆130Nov 19, 2020Updated 5 years ago
- The world's most powerful System Activity Monitor Engine · 一款功能强大的终端行为采集防御开发套件 ~ 旨在帮助EDR、零信任、数据安全、审计管控等终端安全软件可以快速实现产品功能, 而不用关心底层…☆376Feb 19, 2025Updated last year
- 戎码之眼是一个window上的基于att&ck模型的威胁监控工具.有效检测常见的未知威胁与已知威胁.防守方的利剑☆536Oct 25, 2023Updated 2 years ago
- windows kernel pagehook☆42Oct 30, 2022Updated 3 years ago
- ☆309May 11, 2023Updated 2 years ago
- Windows一键检测应急响应服务工具/r3数据采集☆100Apr 5, 2022Updated 3 years ago
- 40行代码检测到大部分CobaltStrike的shellcode☆294Jul 25, 2021Updated 4 years ago
- 从MmPfnData中枚举进程和页目录基址☆208Aug 18, 2023Updated 2 years ago
- Hook system calls on Windows by using Kaspersky's hypervisor☆1,285Feb 14, 2026Updated last month
- https://key08.com/index.php/2021/10/19/1375.html☆71May 11, 2022Updated 3 years ago
- Using NtCreateFile and NtDeviceIoControlFile to realize the function of winsock(利用NtCreateFile和NtDeviceIoControlFile 实现winsock的功能)☆128Sep 9, 2022Updated 3 years ago
- kHypervisor is a lightweight bluepill-like nested VMM for Windows, it provides and emulating a basic function of Intel VT-x☆446Nov 29, 2021Updated 4 years ago
- 检测绝大部分所谓的��内存免杀马☆734Sep 15, 2022Updated 3 years ago
- WFP驱动,关联链路层和进程信息☆16Oct 17, 2021Updated 4 years ago
- Call NtCreateUserProcess directly as normal.☆77May 17, 2022Updated 3 years ago
- a monitoring windows driver calls kernel api tools☆129Jul 5, 2024Updated last year
- Security product hook detection☆327Mar 30, 2021Updated 4 years ago
- iDefender - The Infinite Potential Host Intrusion Prevention System (HIPS) & Real-time Endpoint Detection and Response for Home☆305Feb 9, 2026Updated last month
- 粗暴地枚举管理内核的WFP对象。 Manage kernel WFPs in a brutal way.☆27Jan 14, 2018Updated 8 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆33Nov 14, 2020Updated 5 years ago
- libcodecs is part of the "Huorong eXtendible Stream Scan Engine" project copyright by Huorong Borui (Beijing) Technology Co., Ltd.☆24Aug 17, 2015Updated 10 years ago
- 之前那份是7600的,每次编译搞得好麻烦。更新一个VS2017可以直接编译的。☆154Jun 5, 2019Updated 6 years ago
- iMonitor(冰镜 - 终端行为分析系统)☆824Feb 1, 2026Updated last month
- Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThrea…☆1,296Jun 21, 2024Updated last year
- Reverse engineered source code of the autochk rootkit☆210Nov 1, 2019Updated 6 years ago
- 让Etwhook再次伟大! Make InfinityHook Great Again!☆147Jun 24, 2021Updated 4 years ago
- ☆225Mar 11, 2023Updated 3 years ago
- 无痕注入1☆77Jun 1, 2021Updated 4 years ago
- For Example. See Miro's Blog☆30Nov 26, 2022Updated 3 years ago