H3d9

H3d9's Stars

• tandasat/DdiMon

  Monitoring and controlling kernel API calls with stealth hook using EPT

  Language:C++1.2k328

• 0xnobody/vmpdump

  A dynamic VMP dumper and import fixer, powered by VTIL.

  Language:C++1.2k210

• AdamOron/PatchGuardBypass

  Bypassing PatchGuard on modern x64 systems

  Language:C++24955

• tandasat/SimpleSvmHook

  SimpleSvmHook is a research purpose hypervisor for Windows on AMD processors.

  Language:C++35872

• BaumFX/cpp-anti-debug

  anti debugging library in c++.

  Language:C++51959

• namazso/physmem_drivers

  A collection of various vulnerable (mostly physical memory exposing) drivers.

  Language:PowerShell32266

• KarisAya/nonebot_plugin_groupmate_waifu

  娶群友

  Language:Python5710

• zer0condition/ReverseKit

  x64 Dynamic Reverse Engineering Toolkit

  Language:C++60494

• ZEROWyt/Patchguard-2023

  Language:C248

• ricab/scope_guard

  A modern C++ scope guard that is easy to use but hard to misuse.

  Language:C++18329

• kexue-z/nonebot-plugin-setu-now

  不可以涩涩

  Language:Python12819

• Xyrem/HyperDeceit

  HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate operating system tasks with ease.

  Language:C++36064

• hasherezade/mal_unpack

  Dynamic unpacker based on PE-sieve

  Language:C65868

• lgc-NB2Dev/nonebot-plugin-pjsk

  Project Sekai 表情包制作

  Language:Python1031

• hasherezade/pe-sieve

  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

  Language:C++3.1k434

• ldpreload/BlackLotus

  BlackLotus UEFI Windows Bootkit

  Language:C2k463

• EquiFox/KsDumper

  Dumping processes using the power of kernel space !

  Language:C#985218

• RF3/VMwareVMX

  VMware VMX Crypto Module for Python

  Language:Python8120

• JochenKalmbach/StackWalker

  Walking the callstack in windows applications

  Language:C++831182

• 9176324/Shark

  Turn off PatchGuard in real time for win7 (7600) ~ later

  Language:C986303

• ChaozhongLiu/DyberPet_GenshinImpact

  Genshin Impact Desktop Cyber Pet built with DyberPet

  28126

• sandboxie-plus/Sandboxie

  Sandboxie Plus & Classic

  Language:C14k1.6k

• glmcdona/Process-Dump

  Windows tool for dumping malware PE files from memory back to disk for analysis.

  Language:C1.7k262

• weak1337/Alcatraz

  x64 binary obfuscator

  Language:C++1.7k250

• asmjit/asmjit

  Low-latency machine code generation

  Language:C++4k505

• zyantific/zydis

  Fast and lightweight x86/x86-64 disassembler and code generation library

  Language:C3.5k434

• BeneficialCode/Game-Cheating-Tutorial

  热门网络游戏辅助开发教程

  Language:C14638

• 245950258/How-to-create-a-csgo-cheating-program

  CSGO游戏透视自瞄辅助实现教程

  719634

• MiroKaku/ucxxrt

  The Universal C++ RunTime library, supporting kernel-mode C++ exception-handler and STL.

  Language:C++39897

• hzqst/unicorn_pe

  Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.

  Language:C799198