Pinned Repositories
0cchext
0CCh Windbg extension
30dayMakeOS
《30天自制操作系统》源码中文版。自己制作一个操作系统(OSASK)的过程
A-Protect
A-Protect Anti Rootkit Tool
access
Access without a real handle
AheadLib-x86-x64
hijack dll Source Code Generator. support x86/x64
Ark-tools
Windows Ark 工具的工程和一些demo
Waterman178's Repositories
Waterman178/Anti-Emulator
基于文件特征的Android模拟器检测
Waterman178/app2dylib
A reverse engineering tool to convert iOS app to dylib
Waterman178/ArkToolDrv
An ark tool's driver
Waterman178/AutoLoginByBnsChina
promise to someone
Waterman178/BetaShield
BetaShield Windows x86 Ring3 Anticheat v2
Waterman178/EnjoyTheRing0
Шаблон полнофункционального драйвера и обёртки над ядерным API
Waterman178/ExtCSGO
EAC Bypassing ring3 external aimbot
Waterman178/gargoyle
A memory scanning evasion technique
Waterman178/HyperBone
Minimalistic VT-x hypervisor with hooks
Waterman178/Kernel-Driver-Example
Some of example code that I have collected while learning
Waterman178/KTL
Windows Kernel Template Library
Waterman178/Learn-Algorithms
算法学习笔记
Waterman178/malware-1
Malware source code samples leaked online uploaded to GitHub for those who want to analyze the code.
Waterman178/MiniDump
windows软件崩溃解决方案
Waterman178/minix86
x86 (MS-DOS) documentation, disassembler and emulator - WIP
Waterman178/ms16-098
Windows 8.1 x64 Exploit for MS16-098 RNGOBJ_Integer_Overflow
Waterman178/PoolSprayer
Simple library to spray the Windows Kernel Pool
Waterman178/ProcessHider
Post-exploitation tool for hiding processes from monitoring applications
Waterman178/Reflective-Driver-Loader
Waterman178/REtypedef
Name substitution plugin for IDA Pro
Waterman178/rootkit.com
Mirror of users section of rootkit.com
Waterman178/ShellcodeDriver
Windows driver to execute arbitrary usermode code (essentially same vulnerability as capcom.sys)
Waterman178/Syscall-Monitor
Syscall Monitor is a system monitor program (like Sysinternal's Process Monitor) using Intel VT-X/EPT for Windows7+
Waterman178/unicorn-libemu-shim
libemu shim layer and win32 environment for Unicorn Engine
Waterman178/W64oWoW64
Library that allows you to run 64bit code on a Wow64 32bit process
Waterman178/windows_kernel_address_leaks
Examples of leaking Kernel Mode information from User Mode on Windows
Waterman178/x86-64-pe-emu
AMD64 PE Emulator in Python.
Waterman178/x86emulator
Waterman178/x86obfuscator
a binary x86win32 code obfuscator using virtual machine
Waterman178/ZhuHuiBeiShaDiaoARK
个人所谓的ARK