can1357

Security researcher and reverse engineer. Interested in Windows kernel development, low-level programming, static program analysis and cryptography.

Verilave Inc.The Netherlands

Pinned Repositories

ByePg
Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.
Language:C++852 26 21179
CVE-2018-8897
Arbitrary code execution with kernel privileges using CVE-2018-8897.
Language:C++412 16 9100
haruspex
Exploration of x86-64 ISA using speculative execution.
Language:C++307 17 329
NoVmp
A static devirtualizer for VMProtect x64 3.x. powered by VTIL.
Language:C++2k 82 31342
NtLua
Lua in kernel-mode because why not.
Language:C314 18 1065
NtRays
Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
Language:C++566 17 473
selene
Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!
Language:C++315 7 533
ThePerfectInjector
Literally, the perfect injector.
Language:C897 32 8195
pmesh
pmesh: rethinking application proxies
Language:Go54 6 06
VTIL-Core
Virtual-machine Translation Intermediate Language
Language:C++1.4k 58 27163

can1357's Repositories

can1357/NoVmp
A static devirtualizer for VMProtect x64 3.x. powered by VTIL.
Language:C++2k 82 31342
can1357/ThePerfectInjector
Literally, the perfect injector.
Language:C897 32 8195
can1357/ByePg
Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.
Language:C++852 26 21179
can1357/NtRays
Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
Language:C++566 17 473
can1357/CVE-2018-8897
Arbitrary code execution with kernel privileges using CVE-2018-8897.
Language:C++412 16 9100
can1357/selene
Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!
Language:C++315 7 533
can1357/NtLua
Lua in kernel-mode because why not.
Language:C314 18 1065
can1357/haruspex
Exploration of x86-64 ISA using speculative execution.
Language:C++307 17 329
can1357/linux-pe
COFF and Portable Executable format described using standard C++ with no dependencies.
Language:C++267 9 544
can1357/hvdetecc
Collection of hypervisor detections
Language:C++211 5 017
can1357/simple_cnn
Simple Convolutional Neural Network Library
Language:C++191 20 767
can1357/HexSuite
Header only wrapper around Hex-Rays API in C++20.
Language:C++153 8 021
can1357/physical_mem_controller
A library to read physical memory and system-wide virtual memory.
Language:C++126 8 355
can1357/vmware-rpc
Header-only VMWare Backdoor API Implementation & Effortless VMX Patcher for Custom Guest-to-Host RPCs
Language:C++99 6 018
can1357/IdaThemer
🎨 Seamlessly convert your favorite Visual Studio Code themes to IDA Pro themes.
Language:Go88 2 05
can1357/safe_capcom
Capcom wrapper with safety in mind.
Language:C80 8 142
can1357/xstd
A portable header only library extending the C++20 STL.
Language:C++72 6 07
can1357/vmpdump
A dynamic VMP dumper and import fixer, powered by VTIL.
Language:C++42 3 014
can1357/uLua
micro lua
Language:C++19 3 08
can1357/gengo
Generate Go bindings for shared C libraries.
Language:Go14 2 15
can1357/rpmalloc
Language:C14 3 05
can1357/llvm-patches
Personal curation of Clang/LLVM patches.
13 1 02
can1357/retro
Experimental static analysis framework.
Language:C++13 3 15
can1357/troto
TypeScript to Protobuf transpiler.
Language:TypeScript13 1 02
can1357/xedpp
Tiny wrapper around xed API.
Language:C++10 2 03
can1357/Myelin
Header-only CUDA accelerated DNN library
Language:Cuda9 1 06
can1357/hvpp
hvpp is a lightweight Intel x64/VT-x hypervisor written in C++ focused primarily on virtualization of already running operating system
Language:C++5 1 03
can1357/lwip-fork
Language:C5 3 05