taodaqiao's Stars
DarthTon/HyperBone
Minimalistic VT-x hypervisor with hooks
BadPlayer555/KernelGDIDraw
The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.
SaadAhla/BlockOpenHandle
Block any Process to open HANDLE to your process , only SYTEM is allowed to open handle to your process ,with that you can avoid remote memory scanners
lyswhut/lx-music-desktop
一个基于 electron 的音乐软件
DrDonk/unlocker
VMware macOS utilities
Mattiwatti/EfiGuard
Disable PatchGuard and Driver Signature Enforcement at boot time
opa334/Dopamine
Dopamine is a semi-untethered jailbreak for iOS 15 and 16
i1tao/AheadLibEx
hijack dll Source Code Generator .
BeneficialCode/WinArk
Windows Anti-Rootkit Tool
thetuh/anticheat-poc
A proof of concept user mode anti-cheat for x86 applications
armvirus/SinMapper
usermode driver mapper that forcefully loads any signed kernel driver (legit cert) with a big enough section (example: .data, .rdata) to map your driver over. the main focus of this project is to prevent modern anti-cheats (BattlEye, EAC) from finding your driver and having the power to hook anything due to being inside of legit memory (signed legit driver).
zhuhuibeishadiao/ntoskrnl
The Windows Research Kernel (WRK)
IcEy-999/Drv_Hide_And_Camouflage
wbenny/KSOCKET
KSOCKET provides a very basic example how to make a network connections in the Windows Driver by using WSK
lainswork/dwm-screen-shot
将shellcode注入dwm.exe以进行屏幕截取
liangfei44/VmWareThrough
moccajoghurt/DriverLoader
General purpose tool to load drivers with NtLoadDriver
igogo-x86/HexRaysPyTools
IDA Pro plugin which improves work with HexRays decompiler and helps in process of reconstruction structures and classes
BreakingMalware/PowerLoaderEx
PowerLoaderEx - Advanced Code Injection Technique for x32 / x64
catchorg/Catch2
A modern, C++-native, test framework for unit-tests, TDD and BDD - using C++14, C++17 and later (C++11 support is in v2.x branch, and C++03 on the Catch1.x branch)
JustasMasiulis/lazy_importer
library for importing functions from dlls in a hidden, reverse engineer unfriendly way
JustasMasiulis/nt_wrapper
A wrapper library around native windows sytem APIs
JustasMasiulis/xorstr
heavily vectorized c++17 compile time string encryption.
FiYHer/system_trace_tool
内核驱动加载/卸载痕迹清理,努力绕过反作弊吧 PiDDBCacheTable and MmLastUnloadedDriver
FiYHer/handle_grant_access
句柄提权 无视反作弊读写游戏内存 用于分析游戏结构工具
FiYHer/kernel_window_hide
内核级别隐藏指定窗口
Rythorndoran/SessionMapper
将驱动映射到会话空间
mike1k/pepp
C++ library for parsing and manipulating PE files statically and dynamically.
weak1337/Alcatraz
x64 binary obfuscator
liuzengh/design-pattern
Design Patterns In Modern C++ 中文版翻译