theSecHunter / Hades-Windows
Hades HIDS/HIPS for Windows
☆257Updated 4 months ago
Related projects ⓘ
Alternatives and complementary repositories for Hades-Windows
- The world's most powerful System Activity Monitor Engine · 一款功能强大的终端行为采集防御开发套件 ~ 旨在帮助EDR、零信任、数据安全、审计管控等终端安全软件可以快速实现产品功能, 而不用关心底层…☆343Updated last week
- 40行代码检测到大部分CobaltStrike的shellcode☆271Updated 3 years ago
- 戎码之眼是一个window上的基于att&ck模型的威胁监控工具.有效检测常见的未知威胁与已知威胁.防守方的利剑☆472Updated last year
- Windows对抗沙箱和虚拟机的方法总结☆385Updated 4 years ago
- 分别用R3的0day与R0的0day来干掉杀毒软件☆397Updated 4 years ago
- iDefender(冰盾 - 终端主动防御系统)☆238Updated 3 months ago
- 使用纯C/C++编写的ShellCode生成框架☆433Updated 5 years ago
- 绕3环的shellcode免杀框架☆557Updated 3 years ago
- 检测绝大部分所谓的内存免杀马☆701Updated 2 years ago
- source code☆181Updated 5 years ago
- shellcode 生成框架☆238Updated 2 years ago
- 汇总了目前可以找到的所有的进程注入的方式,完成了x86/x64下的测试,不断更新中☆267Updated 2 years ago
- 有需求做攻防对抗,买本书学习下常见技术,例子敲一敲☆226Updated 3 years ago
- VM一键加壳/脱壳,全压缩,反调试等☆285Updated 4 months ago
- Windows内核安全与驱动开发书附赠的光盘源码☆88Updated 6 years ago
- 逆向火绒安全软件 驱动——sysdiag☆149Updated 6 years ago
- UNONE and KNONE is a couple of open source base library that makes it easy to develop software on Windows.☆144Updated last year
- ☆171Updated 4 years ago
- Hades is a Host-Based Intrusion Detection System based on both eBPF(kernel) and netlink/cn_proc(userspace).☆21Updated last week
- Anhkgg's Tools☆178Updated 3 years ago
- iMonitor(冰镜 - 终端行为分析系统)☆710Updated 4 months ago
- Radical Windows ARK☆206Updated this week
- 这是一个基于gh0st远程控制的项目,使自己更深入了解远控的原理,采用VS2017,默认分支hijack还在修改不能执行,master分支的项目可以正常的运行的,你可以切换到该分支查看可以执行的代码☆486Updated 4 years ago
- 基于sunday算法的内存快速搜索,搜索2GB内存只需1秒☆71Updated 4 years ago
- hijack dll Source Code Generator .☆174Updated 2 months ago
- 自建时间戳服务器实现伪签名驱动证书 Implementing Pseudo Signature with Self-Sign Timestamp Servers☆188Updated 9 months ago
- 一些使用过期或者注销证书的技术☆188Updated 5 years ago
- 过去写的一些Windows安全研究相关代码☆134Updated 5 years ago
- ☆80Updated last month