antiwar3's Projects
Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
构建安卓openssl的环境
Couple methods against kernel drivers
hooking KiUserApcDispatcher
Windows Ark 工具的工程和一些demo
BattlEye shellcodes tester
Demo List cm/ps/ob/minifilter callback And Patch/Bypass it
CallMon is an experimental system call monitoring tool that works on Windows 10 versions 2004+ using PsAltSystemCallHandlers
带有用户管理和后台管理系统的 ChatGPT WebUI
A well-designed cross-platform ChatGPT UI (Web / PWA / Linux / Win / MacOS). 一键拥有你自己的跨平台 ChatGPT 应用。
Windows Kernel inject (no module no thread)
clearing traces of a loaded driver
A simple kernel mode driver that hooks some values at the KUSER_SHARED_DATA structure.
关于intel和amd指令行为不一样这件事
csgo external running from kernelmode
a full open source AntiCheat system
EasyAntiCheat Integrity check bypass by mimicking memory changes
Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.
mouseclassservicecallback detection via hook
dota2自动开房自动进房,判断胜负
Zero-Day Code Injection and Persistence Technique
函数抽取壳
Use Driver Global Memory Load DLL
map driver to memory
由官方的duilib( https://github.com/duilib/duilib ) 复制过来的,仅为了个人学习使用。可以使用vs2008打开,新增一些学习测试用的demo,修改了一些bug和不太好用的地方,代码也会同步官方的后续修改。
PoC: DX11 overlay over DWM
OBS plugin to capture directly from DWM shared surface textures
09/2021 reversal of EasyAntiCheat driver