Pinned Repositories
0day
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新
360Safe
大数字驱动
AllTools
All reasonably stable tools
ALPC-Example
An example of a client and server using Windows' ALPC functions to send and receive data.
anymapper
x64 Windows kernel driver mapper, inject unsigned driver using anycall
awesome-windows-kernel-security-development
windows kernel security development
Backstab
A tool to kill antimalware protected processes
Basic-Rootkit
POC Ring3 Windows Rootkit (x86 / x64) - Hide processes and files
Cronos-Rootkit
Cronos is Windows 10/11 x64 ring 0 rootkit. Cronos is able to hide processes, protect and elevate them with token manipulation.
Game-Cheating-Tutorial
热门网络游戏辅助开发教程
54208039's Repositories
54208039/0day
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新
54208039/Basic-Rootkit
POC Ring3 Windows Rootkit (x86 / x64) - Hide processes and files
54208039/AllTools
All reasonably stable tools
54208039/awesome-windows-kernel-security-development
windows kernel security development
54208039/Cronos-Rootkit
Cronos is Windows 10/11 x64 ring 0 rootkit. Cronos is able to hide processes, protect and elevate them with token manipulation.
54208039/Detect-KeAttachProcess
Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.
54208039/DriverBase
Base Code.
54208039/Drv_Hide_And_Camouflage
54208039/dwm-screen-shot
将shellcode注入dwm.exe以进行屏幕截取
54208039/HackSysExtremeVulnerableDriver
HackSys Extreme Vulnerable Windows Driver
54208039/hygieia
Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.
54208039/InfinityHookPro
InfinityHookPro Win7 -> Win11 latest
54208039/kdmapper
KDMapper is a simple tool that exploits iqvw64e.sys Intel driver to manually map non-signed drivers in memory
54208039/kernel_window_hide
内核级别隐藏指定窗口
54208039/KernelHack
Windows Kernel Misc
54208039/KernelMode-Code
2022 Updated Kernelmode-Code
54208039/MemoryVirtualization
54208039/OpenArk
OpenArk is an open source anti-rookit(ARK) tool for Windows.
54208039/processhacker
A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware.
54208039/Protect_Process
54208039/r77-rootkit
Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.
54208039/safe-rules
详细的C/C++编程规范指南,由360质量工程部编著,适用于桌面、服务端及嵌入式软件系统。
54208039/SinMapper
usermode driver mapper that forcefully loads any signed kernel driver (legit cert) with a big enough section (example: .data, .rdata) to map your driver over. the main focus of this project is to prevent modern anti-cheats (BattlEye, EAC) from finding your driver and having the power to hook anything due to being inside of legit memory (signed legit driver).
54208039/system_trace_tool
内核驱动加载/卸载痕迹清理,努力绕过反作弊吧 PiDDBCacheTable and MmLastUnloadedDriver
54208039/TaskExplorer
Power full Task Manager
54208039/TitanHide
Hiding kernel-driver for x86/x64.
54208039/UMPMLib
A library to manipulate physical memory from usermode.
54208039/WinArk
Windows Anti-Rootkit Tool
54208039/Windows-Batch-Deployment
A programmable and rootkit-like Windows remote access tool.
54208039/WindowsKernel
windwos内核研究与驱动Code