theSecHunter / Hades-Windows
Hades HIDS/HIPS for Windows
☆259Updated 4 months ago
Related projects ⓘ
Alternatives and complementary repositories for Hades-Windows
- The world's most powerful System Activity Monitor Engine · 一款功能强大的终端行为采集防御开发套件 ~ 旨在帮助EDR、零信任、数据安全、审计管控等终端安全软件可以快速实现产品功能, 而不用关心底层…☆343Updated 3 weeks ago
- 戎码之眼是一个window上的基于att&ck模型的威胁监控工具.有效检测常见的未知威胁与已知威胁.防守方的利剑☆475Updated last year
- Windows对抗沙箱和虚拟机的方法总结☆386Updated 4 years ago
- 绕3环的shellcode免杀框架☆561Updated 3 years ago
- 40行代码检测到大部分CobaltStrike的shellcode☆272Updated 3 years ago
- source code☆181Updated 5 years ago
- iDefender(冰盾 - 终端主动防御系统)☆242Updated 4 months ago
- 使用纯C/C++编写的ShellCode生成框架☆431Updated 5 years ago
- VM一键加壳/脱壳,全压缩,反调试等☆286Updated 4 months ago
- shellcode 生成框架☆240Updated 2 years ago
- 有需求做攻防对抗,买本书学习下常见技术,例子敲一敲☆226Updated 3 years ago
- 一些使用过期或者注销证书的技术☆190Updated 5 years ago
- iMonitor(冰镜 - 终端行为分析系统)☆716Updated 4 months ago
- Windows内核安全与驱动开发书附赠的光盘源码☆88Updated 6 years ago
- 检测绝大部分所谓的内存免杀马☆702Updated 2 years ago
- 分别用R3的0day与R0的0day来干掉杀毒软件☆397Updated 4 years ago
- UNONE and KNONE is a couple of open source base library that makes it easy to develop software on Windows.☆144Updated last year
- 汇总了目前可以找到的所有的进程注入的方式,完成了x86/x64下的测试,不断更新中☆268Updated 2 years ago
- 这是一个基于gh0st远程控制的项目,使自己更深入了解远控的原理,采用VS2017,默认分支hijack还在修改不能执行,master分支的项目可以正常的运行的,你可以切换到该分支查看可以执行的代码☆487Updated 4 years ago
- Radical Windows ARK☆206Updated 2 weeks ago
- 大数字驱动逆向代码☆65Updated last year
- 逆向火绒安全软件驱动——sysdiag☆149Updated 6 years ago
- Hades is a Host-Based Intrusion Detection System based on both eBPF(kernel) and netlink/cn_proc(userspace).☆22Updated 3 weeks ago
- 隐藏可执行内存☆245Updated 9 months ago
- ☆171Updated 4 years ago
- 自建时间戳服务器实现伪签名驱动证书 Implementing Pseudo Signature with Self-Sign Timestamp Servers☆196Updated this week
- Anhkgg's Tools☆178Updated 3 years ago
- hijack dll Source Code Generator .☆176Updated 3 months ago