sh4id

sh4id's Stars

• winsiderss/systeminformer

  A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals.com

  Language:C10.8k2831.6k1.4k

• stephenfewer/ReflectiveDLLInjection

  Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

  Language:C2.7k12715771

• gmh5225/awesome-game-security

  awesome game security [Welcome to PR]

  Language:Python2.4k14436354

• AxtMueller/Windows-Kernel-Explorer

  A free but powerful Windows kernel research tool.

  2.4k1070570

• ExpLife0011/awesome-windows-kernel-security-development

  windows kernel security development

  1.9k1342539

• Mattiwatti/EfiGuard

  Disable PatchGuard and Driver Signature Enforcement at boot time

  Language:C++1.8k50124333

• HoShiMin/Kernel-Bridge

  Windows kernel hacking framework, driver template, hypervisor and API written on C++

  Language:C++1.7k8649384

• mohuihui/antispy

  AntiSpy is a free but powerful anti virus and rootkits toolkit.It offers you the ability with the highest privileges that can detect,analyze and restore various kernel modifications and hooks.With its assistance,you can easily spot and neutralize malwares hidden from normal detectors.

  Language:C1.1k543424

• LordNoteworthy/cpu-internals

  Intel / AMD CPU Internals

  Language:C1.1k471180

• tklengyel/drakvuf

  DRAKVUF Black-box Binary Analysis

  Language:C++1k62470247

• SwagSoftware/Kisak-Strike

  100% Open Source CSGO

  Language:C++1k263897

• hfiref0x/TDL

  Driver loader for bypassing Windows x64 Driver Signature Enforcement

  Language:C1k7727331

• caiorss/C-Cpp-Notes

  Notes about modern C++, C++11, C++14 and C++17, Boost Libraries, ABI, foreign function interface and reference cards.

  Language:C++713462135

• JustasMasiulis/inline_syscall

  Inline syscalls made easy for windows on clang

  Language:C++65719688

• btbd/umap

  UEFI bootkit for driver manual mapping

  Language:C512171598

• katlogic/WindowsD

  Disable DSE and WinTcb (without breaking DRM)

  Language:C410211585

• KelvinMsft/kHypervisor

  kHypervisor is a lightweight bluepill-like nested VMM for Windows, it provides and emulating a basic function of Intel VT-x

  Language:C++406364135

• cryptoAlgorithm/nt5src

  Source code of Windows XP (NT5). Leaks are not from me. I just extracted the archive and cabinet files.

  354

• tinysec/windows-syscall-table

  windows syscall table from xp ~ 10 rs4

  Language:Assembly348160107

• killvxk/DisableWin10PatchguardPoc

  pseudo-code to show how to disable patchguard with win10

  Language:C++296193142

• changeofpace/MouClassInputInjection

  MouClassInputInjection implements a kernel interface for injecting mouse input data packets into the input data stream of HID USB mouse devices.

  Language:C++286131978

• btbd/wpp

  Intercepting DeviceControl via WPP

  Language:C1254745

• zer0fl4g/DebugDetector

  Language:C++11215261

• ken-yossy/nvmetool-win

  Communicate with NVMe SSD using Windows' inbox device driver

  Language:C84103346

• JPCERTCC/Windows-Symbol-Tables

  Windows symbol tables for Volatility 3

  Language:Python7213313

• vmcall/eye_mapper

  BattlEye x64 usermode injector

  Language:C++618038

• tigros/HookTools

  Plugin for Process Hacker 2 ( https://github.com/processhacker2 ), displays system hooks and able to unhook too.

  Language:C499312

• s1lentq/hitboxtracker

  :hammer: Dev-tool that demonstrates on client-side true position of the hitboxes calculated by server

  Language:C++387211

• yqsy/VT_demo

  Language:C254124

• scdeny/os-design

  Automatically exported from code.google.com/p/os-design

  Language:C++41134