Pinned Repositories
Arbitrary-Physical-Memory-RW
boiii
☄️ Reverse engineering and analysis of Call of Duty: Black Ops III
DoubleCallBack
eft-1
EPT-HOOK
隐藏钩子过PG
EtwHookDbg
重建调试通道
GpuDecryptShellcode
XOR decrypting shellcode using the GPU with OpenCL.
KMAC
Some usefull info when reverse engineering Kernel Mode Anti-Cheat
xx_tvm
YSignatureCode
特征码搜索引擎
wbaby's Repositories
wbaby/pdbtoheader
pdb's function and global vars to offset
wbaby/anylink-client
AnyLink Secure Client: An SSL VPN client that supports OpenConnect or Cisco's AnyConnect VPN Protocol.
wbaby/ChatTTS
ChatTTS is a generative speech model for daily dialogue.
wbaby/DirectStorage
DirectStorage for Windows is an API that allows game developers to unlock the full potential of high speed NVMe drives for loading game assets.
wbaby/Disable-TamperProtection
A POC to disable TamperProtection and other Defender / MDE components
wbaby/EasyPdb
A very simple C library for download pdb, get rva of function, global variable and offset from struct.
wbaby/edk2
EDK II
wbaby/hypervisor-rs
Rusty Hypervisor - Windows Blue Pill Type-2 Hypervisor in Rust (Codename: Matrix)
wbaby/illusion-rs
Rusty Hypervisor - Windows UEFI Blue Pill Type-1 Hypervisor in Rust (Codename: Illusion)
wbaby/jsoncpp
A C++ library for interacting with JSON.
wbaby/kdmp-parser
Windows kernel dump C++ parser
wbaby/mi-gpt
🏠 将小爱音箱接入 ChatGPT 和豆包,改造成你的专属语音助手。
wbaby/openrecall
OpenRecall is a fully open-source, privacy-first alternative to proprietary solutions like Microsoft's Windows Recall. With OpenRecall, you can easily access your digital history, enhancing your memory and productivity without compromising your privacy.
wbaby/pdb-ripper
Extend dia2dump utility to generate cpp code from pdb
wbaby/PDBRipper
PDBRipper is a utility for extract an information from PDB-files.
wbaby/processhacker
A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware.
wbaby/ProcMonXv2
Process Monitor X v2
wbaby/raw_pdb
A C++11 library for reading Microsoft Program DataBase PDB files
wbaby/RealBlindingEDR
Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...
wbaby/RmTools
蓝队应急工具
wbaby/RtlClone
wbaby/ScyllaHide
Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide
wbaby/tpm-mmio
Using MMIO (Memory-Mapped I/O) to read TPM 2.0 public Endorsement Key.
wbaby/uft
This repo created to manage Issues and access Unreal Finder Tool user interface.
wbaby/Unreal-Finder-Tool
Useful tool to help you fetch and dump Unreal Engine 4 Games information.
wbaby/vmware-exploitation
A collection of links related to VMware escape exploits
wbaby/Voyager
Voyager - A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)
wbaby/VulnerablePatchGuardExploit
A Vulnerable PatchGuard Exploit that can be used to disable PatchGuard on Runtime.
wbaby/WeChatMsg
提取微信聊天记录,将其导出成HTML、Word、CSV文档永久保存,对聊天记录进行分析生成年度聊天报告
wbaby/winfsp
Windows File System Proxy - FUSE for Windows