Pinned Repositories
100-Days-of-ML-Code-Chinese-Version
Chinese Translation for Machine Learning Infographics
ACL-nuller
Assembly to NULL ACL on Windows 8.1 x64
ACL_Edit
Assembly code to use for Windows kernel shellcode to edit winlogon.exe ACL
across
Across the Great Wall we can reach every corner in the world
Advanced-Process-Injection-Workshop
al-khaser
Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
AllTools
All reasonably stable tools
ALPC-Example
An example of a client and server using Windows' ALPC functions to send and receive data.
AlternativeShellcodeExec
Alternative Shellcode Execution Via Callbacks
CVE-2019-0623-32-exp
win32k
Anti-ghosts's Repositories
Anti-ghosts/antispy
AntiSpy is a free but powerful anti virus and rootkits toolkit.It offers you the ability with the highest privileges that can detect,analyze and restore various kernel modifications and hooks.With its assistance,you can easily spot and neutralize malwares hidden from normal detectors.
Anti-ghosts/autochk-rootkit
Reverse engineered source code of the autochk rootkit
Anti-ghosts/awesome-ida
moved to: https://github.com/alphaSeclab/awesome-reverse-engineering
Anti-ghosts/CVE-2019-0808
Win32k Exploit by Grant Willcox
Anti-ghosts/CVE-2019-1215
Anti-ghosts/fuzzing-stuff
Resources About Fuzzing, For Multiple Platforms And All Popular Fuzzers. 500+ Open Source Tools Sorted By Star Count, 800+ Blog Posts Sorted By Publish Time.
Anti-ghosts/HyperBone
Minimalistic VT-x hypervisor with hooks
Anti-ghosts/InfinityHook
Hook system calls, context switches, page faults and more.
Anti-ghosts/injectAllTheThings-1
Different Process Injection techniques. Modified from https://github.com/fdiskyou/injectAllTheThings
Anti-ghosts/injection
Anti-ghosts/inMemoryShellcode
A Collection of In-Memory Shellcode Execution Techniques for Windows
Anti-ghosts/Kernelmode-manual-mapping-through-IAT
Manual mapping without creating any threads, with rw only access
Anti-ghosts/Markdown-Resume
⭐️ Markdown 简历模版
Anti-ghosts/MemoryModule
Library to load a DLL from memory.
Anti-ghosts/NetWatch
威胁流量检测系统
Anti-ghosts/PeLoader
模仿操作系统,加载pe文件到内存中
Anti-ghosts/PoolSprayer
Simple library to spray the Windows Kernel Pool
Anti-ghosts/presentations
Collection of my slide decks
Anti-ghosts/Revoke-Obfuscation
PowerShell Obfuscation Detection Framework
Anti-ghosts/sec-chart
安全思维导图集合
Anti-ghosts/shellcode-resources
Resources About Shellcode
Anti-ghosts/shellcode_encoder
x64 printable shellcode encoder
Anti-ghosts/ShellcodeCompiler
Shellcode Compiler
Anti-ghosts/ShellCodeFrame
使用纯C/C++编写的ShellCode生成框架
Anti-ghosts/thu-cst-cracker
清华大学计算机系课程攻略
Anti-ghosts/UPGDSED
Universal PatchGuard and Driver Signature Enforcement Disable
Anti-ghosts/win32kext
windbg plugin for win32k debugging
Anti-ghosts/Windows-EOP-Exploit
Latest working elevation of privilege exploit by Tavis Ormandy from Google's Project Zero Team
Anti-ghosts/windows-security
Resources About Windows Security. 1100+ Open Source Tools. 3300+ Blog Post and Videos.
Anti-ghosts/windows_kernel_resources-1
Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits