theSecHunter / Hades-Windows
Hades HIDS/HIPS for Windows
☆279Updated 2 weeks ago
Alternatives and similar repositories for Hades-Windows:
Users that are interested in Hades-Windows are comparing it to the libraries listed below
- The world's most powerful System Activity Monitor Engine · 一款功能强大的终端行为采集防御开发套件 ~ 旨在帮助EDR、零信任、数据安全、审计管控等终端安全软件可以快速实现产品功能, 而不用关心底层…☆352Updated 2 months ago
- 40行代码检测到大部分CobaltStrike的shellcode☆286Updated 3 years ago
- 绕3环的shellcode免杀框架☆568Updated 4 years ago
- 使用纯C/C++编写的ShellCode生成框架☆437Updated 5 years ago
- 戎码之眼是一个window上的基于att&ck模型的威胁监控工具.有效检测常见的未知威胁与已知威胁.防守方的利剑☆507Updated last year
- iMonitor(冰镜 - 终端行为分析系统)☆747Updated 5 months ago
- Windows对抗沙箱和虚拟机的方法总结☆392Updated 5 years ago
- VM一键加壳/脱壳,全压缩,反调试等☆302Updated 9 months ago
- Windows内核安全与驱动开发书附赠的光盘源码☆91Updated 7 years ago
- source code☆181Updated 5 years ago
- shellcode 生成框架☆262Updated 3 years ago
- 有需求做攻防对抗,买本书学习下常见技术,例子敲一敲☆224Updated 4 years ago
- 检测绝大部分所谓的内存免杀马☆716Updated 2 years ago
- 汇总了目前可以找到的所有的进程注入的方式,完成了x86/x64下的测试,不断更新中☆277Updated 3 years ago
- Hades is a Host-Based Intrusion Detection System based on both eBPF(kernel) and netlink/cn_proc(userspace).☆24Updated 4 months ago
- 逆向火绒安全软件驱动——sysdiag☆153Updated 7 years ago
- UNONE and KNONE is a couple of open source base library that makes it easy to develop software on Windows.☆151Updated 2 years ago
- 一些使用过期或者注销证书的技术☆233Updated 5 years ago
- ☆169Updated 4 years ago
- ☆166Updated 10 years ago
- iDefender(冰盾 - 终端主动防御系统)☆267Updated 5 months ago
- 在Windows环境下的进程注入方法:远程线程注入、创建进程挂起注入、反射注入、APCInject、SetWindowHookEX注入☆655Updated 6 years ago
- 隐藏可执行内存☆248Updated last year
- ☆131Updated 5 years ago
- Radical Windows ARK☆232Updated last week
- 这是一个基于gh0st远程控制的项目,使自己更深入了解远控的原理,采用VS2017,默认分支hijack还在修改不能执行,master分支的项目可以正常的运行的,你可以切换到该分支查看可以执行的代码☆499Updated 4 years ago
- 大数字驱动逆向代码☆71Updated last year
- 飘云ark(pyark)☆463Updated 3 months ago
- hijack dll Source Code Generator .☆197Updated 8 months ago
- ☆197Updated 2 years ago