Pinned Repositories
0cchext
0CCh Windbg extension
30dayMakeOS
《30天自制操作系统》源码中文版。自己制作一个操作系统(OSASK)的过程
A-Protect
A-Protect Anti Rootkit Tool
access
Access without a real handle
AheadLib-x86-x64
hijack dll Source Code Generator. support x86/x64
Ark-tools
Windows Ark 工具的工程和一些demo
Waterman178's Repositories
Waterman178/Anti-BlueStacks
绕过BlueStacks内核的反模拟器检测
Waterman178/BypassAntiVirus
远控免杀系列文章及配套工具,搜集汇总了互联网上的几十种免杀工具和免杀方法,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
Waterman178/CiDllDemo
Use ci.dll API for validating Authenticode signature of files
Waterman178/CVE-2020-0683
CVE-2020-0683 - Windows MSI “Installer service” Elevation of Privilege
Waterman178/DecryptLogin
Login some website using requests
Waterman178/dwm_overlay
PoC: DX11 overlay over DWM
Waterman178/ebfuscator
Ebfuscator: Abusing system errors for binary obfuscation
Waterman178/efi-memory
Waterman178/ExAndroidNativeEmu
An improved version of AndroidNativeEmu,Allow running android elf on PC
Waterman178/GameReverseNote
记录游戏逆向的分析过程
Waterman178/GuidedHacking-Injector
Fully Featured DLL Injector made by Broihon
Waterman178/headers
Waterman178/IgnoreACLs
A driver to make windows ignore Access Control when accessing files
Waterman178/KernelGDIDraw
The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.
Waterman178/kmclass
kmclass虚拟键鼠驱动
Waterman178/llvm-string-obfuscator
LLVM String Obfuscator
Waterman178/loki-hidriver
Virtual mouse and keyboard driver for Windows 7 and higher
Waterman178/Millin-Injector
Millin Injector offers many features which can aid in creating usermode cheats. Its meant to be light weight and allow users to view things such as loaded modules, imports and other smaller things
Waterman178/MiniVisorPkg
The research UEFI hypervisor that supports booting an operating system.
Waterman178/PE-Dump-Fixer
PE-Dump-Fixer
Waterman178/PeaceMaker
PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.
Waterman178/pyrebox
Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU
Waterman178/replica
Ghidra Analysis Enhancer 🐉
Waterman178/string-replacer
Waterman178/SymlinkCallback
A driver that hooks C: volume using symbolic link callback to track all FS access to the volume
Waterman178/ucxxrt
Universal C++ RunTime (UCXXRT)
Waterman178/unicorn_pe
Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.
Waterman178/veeamon
Waterman178/wda_monitor_trick
PoC: make WDA_MONITOR window transparent on screenshot/capture
Waterman178/YANSOllvm
Yet Another Not So Obfuscated LLVM