Pinned Repositories
actaeon
Memory forensics of virtualization environments
AllMemPro
AllMemPro
BypassAntiVirus
远控免杀系列文章及配套工具,汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
de4dot
.NET deobfuscator and unpacker.
FirstMiniFilter
MiniFilter简单例子
IDA-PRO-SIG
IDA PRO FLIRT signature files MSVC2017的sig文件
MyArkTools
32位Windows内核小工具
PEAnalyse
32位PE解析工具
Remote-control
QT远控项目
shell
对32位EXE文件的加密壳
cloudwindby's Repositories
cloudwindby/BypassAntiVirus
远控免杀系列文章及配套工具,汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
cloudwindby/de4dot
.NET deobfuscator and unpacker.
cloudwindby/APT_Digital_Weapon
Indicators of compromise (IOCs) collected from public resources and categorized by Qi-AnXin.
cloudwindby/BILIBILI-HELPER
B站,哔哩哔哩(Bilibili)自动签到投币工具,每天轻松获取65经验值,支持每日自动投币,银瓜子兑换硬币,领取大会员福利,大会员月底给自己充电等功能。呐!赶快和我一起成为Lv6吧!
cloudwindby/binja-golang-symbol-restore
cloudwindby/browser_pwn
browser pwn, main work now
cloudwindby/cve-2019-1458_POC
POC for cve-2019-1458
cloudwindby/ExtremeVulnerableDriver_XNU
cloudwindby/HackSysExtremeVulnerableDriver
HackSys Extreme Vulnerable Windows Driver
cloudwindby/Hyper-V-Internals
Internals information about Hyper-V
cloudwindby/kairos
64-bit iOS boot image patcher written in C
cloudwindby/Kernel-Bridge
Windows kernel hacking framework, driver template, hypervisor and API written on C++
cloudwindby/libprotobuf-mutator_fuzzing_learning
Learn how to combine libprotobuf-mutator with libfuzzer & AFL++
cloudwindby/MalwareSourceCode
Collection of malware source code for a variety of platforms in an array of different programming languages.
cloudwindby/mkYARA
Generating YARA rules based on binary code
cloudwindby/nemu
Modern Hypervisor for the Cloud
cloudwindby/open-gpu-doc
Documentation of NVIDIA chip/hardware interfaces
cloudwindby/pdfs
Technically-oriented PDF Collection (Papers, Specs, Decks, Manuals, etc)
cloudwindby/PeaceMaker
PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.
cloudwindby/priv10
Privacy tool for windows with a built in firewall
cloudwindby/Ps-Tools
Ps-Tools, an advanced process monitoring toolkit for offensive operations
cloudwindby/Quasar
Remote Administration Tool for Windows
cloudwindby/sample
样本分析报告
cloudwindby/SimpleDebug
控制台版调试器
cloudwindby/spiderfoot
SpiderFoot automates OSINT collection so that you can focus on analysis.
cloudwindby/thc-hydra
hydra
cloudwindby/USO_Info_Leak
two heap address leak bugs in `usosvc` service
cloudwindby/win32k-bugs
Dump of win32k POCs for bugs I've found
cloudwindby/Windows10Exploits
Microsoft » Windows 10 : Security Vulnerabilities
cloudwindby/WindowsExploitationResources
Some random resources I have enjoyed for certain topics of Windows exploit development and semi-related topics