xf555er / Session0_InjectLinks
Session0注入: 用于实现对系统进程的远程线程注入
☆14Updated 2 years ago
Alternatives and similar repositories for Session0_Inject
Users that are interested in Session0_Inject are comparing it to the libraries listed below
Sorting:
- https://key08.com/index.php/2021/10/19/1375.html☆71Updated 3 years ago
- Hook NtDeviceIoControlFile with PatchGuard☆108Updated 3 years ago
- Call NtCreateUserProcess directly as normal.☆75Updated 3 years ago
- ☆20Updated 3 years ago
- shadow tls☆17Updated 2 years ago
- 利用物理内存映射,实现虚拟内存的伪隐藏☆84Updated 3 years ago
- ☆27Updated 2 years ago
- https://www.huorong.cn/☆15Updated last year
- Enum and Remove Hook in Windows☆41Updated 3 weeks ago
- 编译时混淆字符串,以确保生成的二进制PE不会暴漏明文字符串。(C++ 14 及以上)☆28Updated 4 years ago
- 保护进程☆23Updated 2 years ago
- ☆53Updated 2 years ago
- 对debughelp的二次开发☆11Updated 2 years ago
- bootkit驱动映射,三环进程注入加载指定模块☆14Updated 11 months ago
- neat way to detect memory read using nt layer function.☆14Updated 2 years ago
- Load Dll into Kernel space☆38Updated 3 years ago
- 以shellcode注入其它驱动执行,躲避驱动签名检测,曾pubg项目中使用,,,当然现在,,,☆26Updated 2 years ago
- 自写驱动内存注入☆28Updated 4 years ago
- Rookit and anti rookit on Windows platform☆13Updated last year
- sc4cpp is a shellcode framework based on C++☆91Updated 4 years ago
- A simple program to obfuscate code written in cpp.☆51Updated last year
- ☆23Updated 2 years ago
- A simple python script to check evil Visual Studio projects☆20Updated last year
- IAT-Obfuscation to make static analysis of executable harder.☆44Updated 4 years ago
- Windows kernel drivers simple HTTP library for modern C++☆42Updated 7 years ago
- 一个windows内核驱动分析框架,对内核所有导出函数进行挂钩监控☆61Updated last month
- �☆33Updated 2 years ago
- ☆27Updated last year
- win32kbase!NtDCompositionCommitSynchronizationObject and win32kbase!NtGdiGetCertificate☆16Updated 3 years ago
- 针对windows rootkit的一些检测,分别从进程、端口、文件这三个方面进行检测。☆21Updated 8 months ago