Pinned Repositories
0cchext
0CCh Windbg extension
30dayMakeOS
《30天自制操作系统》源码中文版。自己制作一个操作系统(OSASK)的过程
A-Protect
A-Protect Anti Rootkit Tool
access
Access without a real handle
AheadLib-x86-x64
hijack dll Source Code Generator. support x86/x64
Ark-tools
Windows Ark 工具的工程和一些demo
Waterman178's Repositories
Waterman178/access
Access without a real handle
Waterman178/amd_hypervisor
A minimal test implementation of a svm / amd hypervisor
Waterman178/BEDaisy
reverse engineering of bedaisy.sys (battleyes kernel driver) - Aki2k/BEDaisy
Waterman178/CloverBootloader
Bootloader for macOS, Windows and Linux in UEFI and in legacy mode
Waterman178/ColdHide_V2
A mini anti-anti debug hooking library for Windows.
Waterman178/CVE-2020-0796-RCE-POC
CVE-2020-0796 Remote Code Execution POC
Waterman178/Errata1337
Waterman178/EtwExplorer
View ETW Provider manifest
Waterman178/fridaMemoryAccessTrace
Waterman178/ghidra_bridge
Python 3 bridge to Ghidra's Python scripting
Waterman178/heresy
Heresy's Gate and Work Out PoC
Waterman178/HexRaysCodeXplorer
Hex-Rays Decompiler plugin for better code navigation
Waterman178/hyperv_local_dos_poc
Microsoft Hyper-V DoS proof-of-concept code
Waterman178/IOCTL-hook
realExtern.sys driver
Waterman178/kernel_library
most of my utilities gathered in one repo to ease kernel development
Waterman178/memfuck
A PoC designed to bypass all usermode hooks in a WoW64 environment.
Waterman178/MitigationFlagsCliTool
Waterman178/Navy_public
轻量级自动分析病毒程序调用上下文、游戏反调试实现技术平台
Waterman178/negativespoofer
PoC HWID spoofer that runs in EFI
Waterman178/Pasted-Hwid-Spoofer
Waterman178/PrivescCheck
Privilege Escalation Enumeration Script for Windows
Waterman178/SoranoBot
Waterman178/symbolizer
A fast execution trace symbolizer for Windows.
Waterman178/ThreadSpy
Waterman178/TransitionalPeriod
Experiment on producing Ring 0 to Ring 3 transition shellcode in C for x64 / x86. Uses PsSetContextThread() to direct execution. Interrupt Request Level ( IRQL ) Migration From DISPATCH_LEVEL to PASSIVE_LEVEL is done via Work Items
Waterman178/unicorn
Unicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, X86)
Waterman178/vac3_inhibitor
VAC3 (Valve Anti-Cheat) disabler/inhibitor/bypass
Waterman178/vmpdump
A dynamic VMP dumper and import fixer, powered by VTIL.
Waterman178/window_hijack
Rendering on external windows via hijacking thread contexts
Waterman178/Windows-Exploits