Pinned Repositories
Alternate
Visual Studio C/C++ Library
apc-research
APC Internals Research Code
append_signed_pe
Append custom data to signed pe file and DONOT DESTROY SIGNED STATUS.
APT_REPORT
Interesting apt report collection and some special ioc express
awesome-windows-kernel-security-development
windows kernel security development
Baidu-XunleiVIP
百度网盘超级会员,迅雷会员、爱奇艺会员账号每日分享,还有优酷,腾讯,芒果等VIP。AND。百度网盘(百度云)不限速工具分享。
BEADS
A framework for automated vulnerability discovery in SDNs
ke64
windows kernel arktools
VeraCrypt
Disk encryption with strong security based on TrueCrypt
liushouhuo's Repositories
liushouhuo/OffensivePH
OffensivePH - use old Process Hacker driver to bypass several user-mode access controls
liushouhuo/SuperRDP
Super RDPWrap
liushouhuo/fscan
一款内网综合扫描工具,方便一键自动化、全方位漏扫扫描。
liushouhuo/next-terminal
Next Terminal是面向中小企业设计的轻量级堡垒机系统,易安装,易使用,支持RDP、SSH、VNC、Telnet、Kubernetes协议。
liushouhuo/DetoursX
Extended version of https://github.com/microsoft/Detours
liushouhuo/VmwareHardenedLoader
Vmware Hardened VM detection mitigation loader (anti anti-vm)
liushouhuo/wowInjector
PoC: Exploit 32-bit Thread Snapshot of WOW64 to Take Over $RIP & Inject & Bypass Antivirus HIPS (HITB 2021)
liushouhuo/NoPatchGuardCallback
x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code
liushouhuo/VeraCrypt
Disk encryption with strong security based on TrueCrypt
liushouhuo/SimuLand
Understand adversary tradecraft and improve detection strategies
liushouhuo/KernelForge
A library to develop kernel level Windows payloads for post HVCI era
liushouhuo/Xenos
Windows dll injector
liushouhuo/ke64
windows kernel arktools
liushouhuo/VtToMe
之前学习X64VT写的代码,很多坑,但是大体的逻辑还是完整的。现发出来给更多想学VT的人参考...
liushouhuo/ntfsDump
Use to copy a file from an NTFS partitioned volume by reading the raw volume and parsing the NTFS structures.
liushouhuo/KDU
Kernel Driver Utility
liushouhuo/SyscallTables
Windows NT x64 Syscall tables
liushouhuo/HyperPlatform
Intel VT-x based hypervisor aiming to provide a thin VM-exit filtering platform on Windows.
liushouhuo/Windows-classic-samples
This repo contains samples that demonstrate the API used in Windows classic desktop applications.
liushouhuo/multiOTPCredentialProvider
multiOTP Credential Provider is a V2 Credential Provider for Windows 7/8/8.1/10/2012(R2)/2016 with options like RDP only and UPN name support
liushouhuo/append_signed_pe
Append custom data to signed pe file and DONOT DESTROY SIGNED STATUS.
liushouhuo/pafish
Pafish is a demonstration tool that employs several techniques to detect sandboxes and analysis environments in the same way as malware families do.
liushouhuo/Vm2Import
fix vmprotect import function used unicorn-engine.
liushouhuo/EfiGuard
Disable PatchGuard and DSE at boot time
liushouhuo/hidden-1
Windows driver with usermode interface which can hide objects of file-system and registry, protect processes and etc
liushouhuo/QSlice2
Tribute to the classic QSlice tool
liushouhuo/KasperskyHook
Hook system calls on Windows by using Kaspersky's hypervisor
liushouhuo/SystemExplorer
Windows System Explorer
liushouhuo/Gigabyte_Disable_DSE
Code to disable DSE(Driver Signature Enforcement) using vulnerable gigabyte driver.
liushouhuo/vmware-rpc
Header-only VMWare Backdoor API Implementation & Effortless VMX Patcher for Custom Guest-to-Host RPCs