Pinned Repositories
AgentSmith-HIDS
AgentSmith-HIDS is a Cloud-Native Host-Based Intrusion Detection solution project to provide next-generation Threat Detection and Behavior Audition with modern architecture.
Blackbone
Windows memory hacking library
cve-2020-1337-poc
poc for CVE-2020-1337 (Windows Print Spooler Elevation of Privilege)
CVE-2021-31166
Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.
CVE-2023-21752
DirectInput
Simulate SendInput with ClassService
ghidra
Ghidra is a software reverse engineering (SRE) framework
hook_ObReferenceObjectByHandleWithTag
win10 hook ObReferenceObjectByHandleWithTag
ReflectiveDLLInjection
Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.
UPGDSED
Universal PatchGuard and Driver Signature Enforcement Disable
jiangminghua's Repositories
jiangminghua/AgentSmith-HIDS
AgentSmith-HIDS is a Cloud-Native Host-Based Intrusion Detection solution project to provide next-generation Threat Detection and Behavior Audition with modern architecture.
jiangminghua/Blackbone
Windows memory hacking library
jiangminghua/cve-2020-1337-poc
poc for CVE-2020-1337 (Windows Print Spooler Elevation of Privilege)
jiangminghua/CVE-2021-31166
Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.
jiangminghua/CVE-2023-21752
jiangminghua/DirectInput
Simulate SendInput with ClassService
jiangminghua/ghidra
Ghidra is a software reverse engineering (SRE) framework
jiangminghua/hook_ObReferenceObjectByHandleWithTag
win10 hook ObReferenceObjectByHandleWithTag
jiangminghua/ReflectiveDLLInjection
Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.
jiangminghua/UPGDSED
Universal PatchGuard and Driver Signature Enforcement Disable
jiangminghua/Vulnerability-Remote-Code-Execution
CVE Vulnerability Remote Code Execution
jiangminghua/winafl
A fork of AFL for fuzzing Windows binaries
jiangminghua/Windows_LPE_AFD_CVE-2023-21768
LPE exploit for CVE-2023-21768