Pinned Repositories
exploit-RemoteDesktopServerDriver
exploit termdd.sys(support kb4499175)
JunkDriveOpenSource
Some garbage drivers written for getting started
MiniVTx64
Intel Virtualization Technology demo
NewHideDriverEx
Hide Driver By MiProcessLoaderEntry
ntoskrnl
The Windows Research Kernel (WRK)
ObRegisterCallBacksByPass
old bypass
PatchGuardResearch
win10 pgContext dynamic dump (btc version)
PathModification
Process path modification x64
PFHook
Page fault hook use ept (Intel Virtualization Technology)
WskHttp
Windows kernel drivers simple HTTP library for modern C++
zhuhuibeishadiao's Repositories
zhuhuibeishadiao/exploit-RemoteDesktopServerDriver
exploit termdd.sys(support kb4499175)
zhuhuibeishadiao/KernelHiddenExecute
Execute kernel code with page separation
zhuhuibeishadiao/PG1903
zhuhuibeishadiao/InfinityHook
Hook system calls, context switches, page faults and more.
zhuhuibeishadiao/Kernelmode-manual-mapping-through-IAT
Manual mapping without creating any threads, with rw only access
zhuhuibeishadiao/WeChatRobot
PC版微信机器人
zhuhuibeishadiao/DecryptUnit
此项目可用于Firefox,chrome,opera浏览器的登录信息的解密。
zhuhuibeishadiao/hwid
HWID spoofer
zhuhuibeishadiao/MemJect
Simple Dll injector loading from memory. Supports PE header and entry point erasure. Written in C99.
zhuhuibeishadiao/MouHidInputHook
MouHidInputHook enables users to filter, modify, and inject mouse input data packets into the input data stream of HID USB mouse devices without modifying the mouse device stacks.
zhuhuibeishadiao/apollo
An open autonomous driving platform
zhuhuibeishadiao/ByePg
Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI
zhuhuibeishadiao/kdmapper-1803-1903
Just a kdmapper fork that works for winver: 1803-1903
zhuhuibeishadiao/PcWeChatHooK
云课堂《2019 PC微信 探秘》示例代码
zhuhuibeishadiao/sysmonx
SysmonX - An Augmented Drop-In Replacement of Sysmon
zhuhuibeishadiao/UsbMon
zhuhuibeishadiao/VirtualKD-Redux
VirtualKD-Redux - A revival and modernization of VirtualKD
zhuhuibeishadiao/winappdbg
WinAppDbg Debugger
zhuhuibeishadiao/WindowFunctionTracer
Window Executable file Function tracer using Debugging API
zhuhuibeishadiao/BLogger
An easy to use modern C++14/17 async cross-platform logger which supports custom formatting/patterns, colored output, file logging, log rotation & more!
zhuhuibeishadiao/FakePDB
Tool for PDB generation from IDA Pro database
zhuhuibeishadiao/findrpc
Idapython script to carve binary for internal RPC structures
zhuhuibeishadiao/HightLight
a plugin for ida of version 7.2 to help know F5 window codes better
zhuhuibeishadiao/km-um-communication
A somewhat wide collection of various kernelmode-usermode communication methods in one repository (mainly just for learning purposes).
zhuhuibeishadiao/pinjectra
Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)
zhuhuibeishadiao/rifiuti2
Windows Recycle Bin analyser
zhuhuibeishadiao/stringsifter
A machine learning tool that automatically ranks strings based on their relevance for malware analysis.
zhuhuibeishadiao/SymCrypt
Cryptographic library
zhuhuibeishadiao/tknk_scanner
[BHEU 2018 Arsenal] Community-based integrated malware identification system
zhuhuibeishadiao/UAC_bypass_windows_store
Windows 10 LPE (UAC Bypass) in Windows Store (WSReset.exe)