keowu

Security Researcher | i like All OS Internals, Malware & Reverse Engineering, C++, Intel/ARM Assembly and cool things | Jesus Follower

Brazilian Intelligence AgencySão Paulo & Shizuoka-Ken

Pinned Repositories

AllWinnerTechFirmwareandKernelWorkbench
AllWinnerTech Firmware and Kernel Workbench tool to unpack and pack boot.img or boot.fex of all AllWinner Tech processors allowing reverse engineering of the firmware embedded in them.
Language:Python8 3 01
ATHERCRC32
ATHERCRC32 Provide developers with a complete framework for using CRC32 in functions/classes in memory, and protecting your software against WriteProcessMemory or changes during execution in memory, protecting your intellectual property.
Language:C++15 3 05
BadRentdrv2
A vulnerable driver exploited by me (BYOVD) that is capable of terminating several EDRs and antivirus software in the market, rendering them ineffective, working for both x32 and x64(CVE-2023-44976).
Language:C++90 2 220
birosca
A Dynamic Study Vmprotect 1.x-1.9X Unpacking Toolkit, Recovery OEP, FIX PE, IAT and bypass protection with custom Loader and interceptor vmexit(aka context exchange) from packer stub.
Language:C++30 3 06
fluxussos
Fluxuss OS, Um sistema operacional baseado em linux, para cientistas da computação, desenvolvedores independentes, hackermans e afins.
1 2 00
huawei_code_calculator
Universal calculator to calculate security codes for Huawei products, to obtain privileged access.
Language:Python16 7 05
InstrumentationCallbackToolKit
A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using InstrumentationCallback.
Language:C++25 2 09
mhyprot2
Reverse engineering Genshin Impact anticheat to study how anticheats work on the Windows operating system.
Language:C++99 4 121
sourceengineexplorer
A CS Source Engine² for Creating Cheat/Trainers, Debug Valve Code, Exploring hidden game engine features, Exploit Develop, Assembly Analyzer, Network Emulator, Custom Scripting Interface for study and Cloud-based Decompiler for testing (and binary analysis).
Language:C++15 3 04
Treinamento-Introducao-a-Engenharia-Reversa-no-Windows
Conteúdo do treinamento/brainstorming Introdução a engenharia reversa no Windows feito com muito carinho por mim.
Language:C++13 2 01

keowu's Repositories

keowu/mhyprot2
Reverse engineering Genshin Impact anticheat to study how anticheats work on the Windows operating system.
Language:C++99 4 121
keowu/BadRentdrv2
A vulnerable driver exploited by me (BYOVD) that is capable of terminating several EDRs and antivirus software in the market, rendering them ineffective, working for both x32 and x64(CVE-2023-44976).
Language:C++90 2 220
keowu/birosca
A Dynamic Study Vmprotect 1.x-1.9X Unpacking Toolkit, Recovery OEP, FIX PE, IAT and bypass protection with custom Loader and interceptor vmexit(aka context exchange) from packer stub.
Language:C++30 3 06
keowu/InstrumentationCallbackToolKit
A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using InstrumentationCallback.
Language:C++25 2 09
keowu/huawei_code_calculator
Universal calculator to calculate security codes for Huawei products, to obtain privileged access.
Language:Python16 7 05
keowu/ATHERCRC32
ATHERCRC32 Provide developers with a complete framework for using CRC32 in functions/classes in memory, and protecting your software against WriteProcessMemory or changes during execution in memory, protecting your intellectual property.
Language:C++15 3 05
keowu/sourceengineexplorer
A CS Source Engine² for Creating Cheat/Trainers, Debug Valve Code, Exploring hidden game engine features, Exploit Develop, Assembly Analyzer, Network Emulator, Custom Scripting Interface for study and Cloud-based Decompiler for testing (and binary analysis).
Language:C++15 3 04
keowu/Minecraft-Windows-10-Trial-Bypass
A tool that allows you to bypass the trial of Minecraft for Windows 10 from the Microsoft Store.
Language:C++14 4 15
keowu/Treinamento-Introducao-a-Engenharia-Reversa-no-Windows
Conteúdo do treinamento/brainstorming Introdução a engenharia reversa no Windows feito com muito carinho por mim.
Language:C++13 2 01
keowu/pefixerextreme
My personal PE Fixer that allows you to patch a raw PE dump to a fully patched and working PE dump that will help your analysis.
Language:C++10 2 01
keowu/gamespy
A Completely reversed from scratch Gamespy SDK 2000-2005 Emulator for Halo CE, Battlefield 1942 and Vietnam with full docs and papper.
Language:C++9 3 02
keowu/malware
Notes from my malware analysis hobby, use it (don't take everything for granted and research it yourself, don't cite me as a reference for anything, constructive criticism is welcome), this is CI for my blog
Language:C++9 2 03
keowu/wintapix
Reversed WintaPix Malware Source code | That targets countries in the Middle East and abuse KeServiceDescriptorTable(SSDT), persistence and filesystem.
Language:C9 2 12
keowu/AllWinnerTechFirmwareandKernelWorkbench
AllWinnerTech Firmware and Kernel Workbench tool to unpack and pack boot.img or boot.fex of all AllWinner Tech processors allowing reverse engineering of the firmware embedded in them.
Language:Python8 3 01
keowu/pefixerextremenet
So you want to fix a raw .net file manually ? I got it!, Let's fix RVA and Sizes, Relocations, EP, IAT, Metadata Dir, Directory, BSJB, Invalid streams, NestedClasses, resources and more!
Language:C++8 4 21
keowu/unisoc_multilaser_firmware_workbench
A project that allows to reverse engineer the firmware of devices from multilaser of Brazil that are based on Unisoc Shanghai boards, allowing decryption and modification as if it were an engineer for them.
Language:Python8 2 02
keowu/WinHandKill
A plugin for x64dbg that allows you to hook the Local Security Authority Subsystem Service process to extract all possible TLS(On handshake, Import, Export or Generate) keys from the operating system using the SeDebugPrivilege escalation to make malware analysis faster and easier.
Language:CMake8 2 23
keowu/winsystemprogramming
Learn Winapi in this Repo with examples, to understand its abstraction in reverse engineering for Windows.
Language:C++8 3 01
keowu/KethoMemoryToolKit
KethoMemoryToolKit is a set of tools used by me to change OPCODES of the memory of any process running in the operating system of specific offsets(RVA) from an ImageBase.
Language:C++7 3 03
keowu/winrar
A simple made in Rust crack, automatic for Winrar, activated from shared virtual memory, for studies.
Language:Rust7 2 01
keowu/RegunX_WindowsActivador
A software that activates your windows 10 safely via KMS Bypass.
Language:C++5 3 0
keowu/Android-Internals-Repository
Android Internals study repository
4 2 0
keowu/huawei-security
Huawei security kernel reverse engineering code (halved and not fully rebuilt)
Language:C++3 4 0
keowu/Learning-Malware-Analysis-Repository
Book study repository
Language:Python3 3 01
keowu/CSSource_AntiCheat_Researches
Language:C++2 3 01
keowu/arm
Anotações de ARM
Language:C++1 3 0
keowu/azure-docs.pt-br
Language:PowerShell2 0
keowu/Delphi-Kawaii
Delphi-Kawaii is a plugin for Ida Pro.
Language:Python1 0
keowu/rickroll-lang
The Rick Roll programming language is a rickroll based, process oriented, dynamic, strong, esoteric programming language. All of the keywords/statements are from Rick Astley's lyrics. Discord server: https://discord.gg/yzZ3MfGZ8A
Language:Python1 0
keowu/XTranslation
Fazendo a tradução para português-br para o Hors :)
1 0