10010100111000 Goto Github PK

-

学习Windows内核驱动编程

al-khvm-

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

anti-vm

Windows-based implementation of several anti-vm techniques used in malware development.

badcode

恶意代码逃逸源代码 http://payloads.online

bestedrofthemarket

Little user-mode AV/EDR evasion lab for training & learning purposes

blackbone

Windows memory hacking library

book

리버싱 핵심원리 - 소스 코드 및 실습 예제

dirver_learn_-

dma

Direct Memory Access (DMA) Attack Software

etwhookdbg

kasperskyhook

Hook system calls on Windows by using Kaspersky's hypervisor

kdp-compatible-driver-loader

KDP compatible unsigned driver loader leveraging a write primitive in one of the IOCTLs of gdrv.sys

process-inject

在Windows环境下的进程注入方法：远程线程注入、创建进程挂起注入、反射注入、APCInject、SetWindowHookEX注入

sdk-api

Public contributions for win32 API documentation

setthreadcontextcall

Remote set thread context call any function

testvvt

vm-

Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

vmwarethrough

vttome

之前学习X64VT写的代码，很多坑，但是大体的逻辑还是完整的。现发出来给更多想学VT的人参考...

winark

Windows Anti-Rootkit Tool

windows-

The Windows Kernel Programming book samples

windows-driver-samples

This repo contains driver samples prepared for use with Microsoft Visual Studio and the Windows Driver Kit (WDK). It contains both Universal Windows Driver and desktop-only driver samples.

windows-kernel-security-and-driver-development-cd

Windows内核安全与驱动开发书附赠的光盘源码

windows-programming-5th

Windows程序设计（第5版珍藏版）光盘源代码

windowsexploitationresources

Resources for Windows exploit development

windowskernelbook

《Windows 内核安全编程技术实践》 是一本于2023年3月4日创作完成，并于3月6日首次发表的图书作品，著作权人是王瑞。本书图文并茂、深入浅出、案例丰富，是Windows内核开发工程师的参考资料，也可供信息安全，软件工程等相关专业本科及以上在校生学习参考。本书是近年来少见的关于揭秘AntiRootkit反内核工具实现细节的相关书籍。

windowskernelprograming

《Windows内核编程》学习

xenos-

Windows dll injector