Pinned Repositories
AimKit-Pasted-Driver
The BlackBone paste that GreenTea denies he pasted
awesome-windows-kernel-security-development
windows kernel security development
CVE-2019-0803
Win32k Elevation of Privilege Poc
KeUserModeCallBack
A Simple Example
MoaRpm
The Mother-of-All ReadProcessMemory Classes
NtCompareSigningLevel-hook
swap the function pointer in NtCompareSigningLevels for undetected driver communication.
RegEditX
Enhanced Registry Editor
snifferview
vdebug
WinFaults
A small header file mapping status codes passed to KiExceptionDispatch before KiPreprocessFault to individual CPU faults.
ExpLife0011's Repositories
ExpLife0011/driver_callback_bypass_1909
研究和移除各种内核回调,在anti anti cheat的路上越走越远
ExpLife0011/anycall
x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration
ExpLife0011/cpp_new_features
2021年最新整理,500个c++11/14/17/20/23的新特性代码案例,包含lambda匿名函数,右值引用,auto,coroutine库,synchronization库等
ExpLife0011/dxgkrnl_hook_ex
以前改进的cheat内核通信模块,现在EAC Detected,现在发出来
ExpLife0011/EASY-HWID-SPOOFER
基于内核模式的硬件信息欺骗工具
ExpLife0011/GH-Injector-Library
A feature rich DLL injection library.
ExpLife0011/HIPS-HIDS_CveMod
CVE主防(HIPS/HIDS)
ExpLife0011/HyperHide
Hypervisor based anti anti debug plugin for x64dbg
ExpLife0011/Kernel-Anit-Anit-Debug-Plugins
Kernel Anit Anit Debug Plugins 内核反反调试插件
ExpLife0011/kernel_sockets_memory
Kernel-based memory hacking framework communicating with a kernel driver via sockets.
ExpLife0011/Vm2Import
fix vmprotect import function used unicorn-engine.
ExpLife0011/AUPK
ExpLife0011/Awesome-Blockchain-Security
区块链安全学习资料汇总
ExpLife0011/CVE-2020-15368
How to exploit a vulnerable windows driver. Exploit for AsrDrv104.sys
ExpLife0011/DuckMemoryScan
检测绝大部分所谓的内存免杀马
ExpLife0011/electron-vue-template
electron-vue-template,electron+vue+webpack,for client and web.一套代码,同时构建客户端和web端。
ExpLife0011/GarHal_CSGO
A project that demonstrates how to screw with CSGO from Kernel Space. (CSGO Kernel Cheat/Hack) All cleaned up, and with updated offsets.
ExpLife0011/hooker-1
🔥🔥hooker是一个基于frida实现的逆向工具包。为逆向开发人员提供统一化的脚本包管理方式、通杀脚本、自动化生成hook脚本、内存漫游探测activity和service、firda版JustTrustMe
ExpLife0011/HyperWin
A native hypervisor designed for the Windows operating system
ExpLife0011/kAFL-1
A fuzzer for full VM kernel/driver targets
ExpLife0011/liuguang
鎏光云游戏引擎
ExpLife0011/M3U8-Downloader
M3U8-Downloader 支持多线程、断点续传、加密视频下载缓存。
ExpLife0011/MakeInfinityHookGreatAgain
让Etwhook再次伟大! Make InfinityHook Great Again!
ExpLife0011/NoPG
ExpLife0011/reven2-resources
reven2-scripts contains a set of REVEN scripts to automate timeless-analysis on REVEN traces.
ExpLife0011/stlkrn
C++ STL in the Windows Kernel with C++ Exception Support
ExpLife0011/TaoQuick
a cool QtQuick/qml component library and demo(一套酷炫的QtQuick/Qml基础库和示例)
ExpLife0011/tenet
A Trace Explorer for Reverse Engineers
ExpLife0011/VMPImportFixer
Fix VMProtect Import Protection
ExpLife0011/Windows-Non-Paged-Pool-Overflow-Exploitation
Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CVE-2020-17087 and an off-by-one overflow