Pinned Repositories
AheadLib-x86-x64
hijack dll Source Code Generator. support x86/x64
al-khaser
Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
Anti-AntiDebuggerDriver
VMP 3.5 - VMP 3.7.2 Full Protect Anti Debugger Fuxker
antispy
AntiSpy is a free but powerful anti virus and rootkits toolkit.It offers you the ability with the highest privileges that can detect,analyze and restore various kernel modifications and hooks.With its assistance,you can easily spot and neutralize malwares hidden from normal detectors.
Apex_Legends_Driver_Cheat
bianchengyulu
个人总结的经验语录
capstone
Capstone disassembly/disassembler framework: Core (Arm, Arm64, BPF, EVM, M68K, M680X, MOS65xx, Mips, PPC, RISCV, Sparc, SystemZ, TMS320C64x, Web Assembly, X86, X86_64, XCore) + bindings.
chfsgui
This is just a GUI WRAPPER for chfs(cute http file server)
CodeMake
esig文件生成工具
CVE-2019-0708-EXP-Windows
CVE-2019-0708-EXP-Windows版单文件exe版,运行后直接在当前控制台反弹System权限Shell
dosnow's Repositories
dosnow/AheadLib-x86-x64
hijack dll Source Code Generator. support x86/x64
dosnow/antispy
AntiSpy is a free but powerful anti virus and rootkits toolkit.It offers you the ability with the highest privileges that can detect,analyze and restore various kernel modifications and hooks.With its assistance,you can easily spot and neutralize malwares hidden from normal detectors.
dosnow/Apex_Legends_Driver_Cheat
dosnow/bianchengyulu
个人总结的经验语录
dosnow/capstone
Capstone disassembly/disassembler framework: Core (Arm, Arm64, BPF, EVM, M68K, M680X, MOS65xx, Mips, PPC, RISCV, Sparc, SystemZ, TMS320C64x, Web Assembly, X86, X86_64, XCore) + bindings.
dosnow/CVE-2019-0708-EXP-Windows
CVE-2019-0708-EXP-Windows版单文件exe版,运行后直接在当前控制台反弹System权限Shell
dosnow/dll2shellcode
dll转shellcode工具
dosnow/E-Debug
X64Dbg插件,分析易语言必备神器
dosnow/exe_to_dll
Converts a EXE into DLL
dosnow/GfiRatClient
dosnow/GfiRatServer
dosnow/HideProcessHook
DLL that hooks the NtQuerySystemInformation API and hides a process name
dosnow/HttpInterface
Windows上C++封装的HTTP库,包含三种实现模式(WinInet、WinHttp、socket)
dosnow/MemoryModule
A tool to parse and load module in memory, as well as attach a DLL in EXE. Most of the functions are inline, so that it can also be used in shellcode.
dosnow/MemoryModulePP
modify from memorymodule. support exception
dosnow/mmLoader
A library for loading dll module bypassing windows PE loader from memory (x86/x64)
dosnow/OpenArk
OpenArk is an open source anti-rookit(ARK) tool for Windows.
dosnow/PE_import-_adder
Add a new section in the PE file, and copy old import descriptor to the new section then insert a new dll file into the import directory.
dosnow/ReadWriteDriver
A kernel driver for reading and writing memory
dosnow/sc4cpp
sc4cpp is a shellcode framework based on C++
dosnow/ScyllaHide-IDA7.5
ScyllaHide for IDA7.5; ScyllaHide IDA7.5; It is a really niccccccce anti-anti-debug tool
dosnow/ShellCodeFramework
绕3环的shellcode免杀框架
dosnow/SysWhispers2_x86
X86 version of syswhispers2
dosnow/TitanHide
Hiding kernel-driver for x86/x64.
dosnow/vmpdump
A dynamic VMP dumper and import fixer, powered by VTIL.
dosnow/VMProtectTest
VMProtectTest
dosnow/VmwareHardenedLoader
Vmware Hardened VM detection mitigation loader (anti anti-vm)
dosnow/Win_Rootkit
A kernel-mode rootkit with remote control
dosnow/wow64Jit
Call 32bit NtDLL API directly from WoW64 Layer
dosnow/x64dbg
An open-source x64/x32 debugger for windows.