Pinned Repositories
al-khaser
Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
algorithms
如果希望用不同语言来完成如下基本算法, 请 fork https://github.com/yunshuipiao/sw-algorithms 一起努力。
APISearch-Plugin-x86
APISearch Plugin (x86) - A Plugin For x64dbg
AutoSpitta-x64
Mouse emulation driver for Windows 10 x64
Avanguard
The Win32 Anti-Intrusion Library
awesome-adb
:lollipop: ADB Usage Complete / ADB 用法大全
awesome-reverse-engineering
Reverse Engineering Resources About All Platforms(Windows/Linux/macOS/Android/iOS/IoT) And Every Aspect! (More than 3500 open source tools and 2300 posts&videos)
awesome-vmp
虚拟机分析相关资料
awesome-windows-security-development
awesome-windows-security-development
Blackbone
Windows memory hacking library
whathhh-d's Repositories
whathhh-d/al-khaser
Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
whathhh-d/Avanguard
The Win32 Anti-Intrusion Library
whathhh-d/awesome-adb
:lollipop: ADB Usage Complete / ADB 用法大全
whathhh-d/awesome-reverse-engineering
Reverse Engineering Resources About All Platforms(Windows/Linux/macOS/Android/iOS/IoT) And Every Aspect! (More than 3500 open source tools and 2300 posts&videos)
whathhh-d/Blackbone
Windows memory hacking library
whathhh-d/CmdLine
Simple hack to make it easy to run commands on the command line from C#.
whathhh-d/Daat
a simple intel vt code both support x86 & x64.
whathhh-d/DisablePatchGuard
disable most common windowsx64 systems patchguard
whathhh-d/Dwarf
A debugger for mobile reverse engineers, crackers and security analyst. Or damn, what a reversed fluffy or yet, duck warrios are rich as fuck. Whatever you like! Built on top of pyqt5, frida and some terrible code.
whathhh-d/EACReversing
Reversing EasyAntiCheat.
whathhh-d/gbhv
Simple x86-64 VT-x Hypervisor with EPT Hooking
whathhh-d/GleeBug
Debugging Framework for Windows.
whathhh-d/HideDriver
whathhh-d/Hypervisor-From-Scratch
Source code of a multiple series of tutorials about hypervisor. Available at: https://rayanfam.com/tutorials
whathhh-d/InfinityHook
Hook system calls, context switches, page faults and more.
whathhh-d/Kernel-Bridge
Windows kernel hacking framework, driver template and API written on C++
whathhh-d/KsDumper
Dumping processes using the power of kernel space !
whathhh-d/loki-hidriver
Virtual mouse and keyboard driver for Windows 7 and higher
whathhh-d/makin
makin - reveal anti-debugging and anti-VM tricks
whathhh-d/MouHidInputHook
MouHidInputHook enables users to filter, modify, and inject mouse input data packets into the input data stream of HID USB mouse devices without modifying the mouse device stacks.
whathhh-d/openbilibili-go-common
听说这是来自 https://github.com/openbilibili/go-common/ 的 “哔哩哔哩 bilibili 网站后台工程 源码”,不过咱也不知道这是啥。
whathhh-d/PolyHook_2_0
C++17, x86/x64 Hooking Libary v2.0
whathhh-d/processhacker
A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware.
whathhh-d/Shark
Turn off PatchGuard in real time for win7 (7600) ~ win10 (17763).
whathhh-d/study
whathhh-d/unicorn
Unicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, X86)
whathhh-d/unicorn_pe
Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.
whathhh-d/upx
UPX - the Ultimate Packer for eXecutables
whathhh-d/VivienneVMM
VivienneVMM is a stealthy debugging framework implemented via an Intel VT-x hypervisor.
whathhh-d/VmwareHardenedLoader
Vmware Hardened VM detection mitigation loader (anti anti-vm)