Starred repositories
A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals…
High Performance TCP/UDP/HTTP Communication Component
The Minimalistic x86/x64 API Hooking Library for Windows
Fast and lightweight x86/x86-64 disassembler and code generation library
A Simple library for communicating with USB and Bluetooth HID devices on Linux, Mac, and Windows.
🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc
Vmware Hardened VM detection mitigation loader (anti anti-vm)
Zero-Day Code Injection and Persistence Technique
Driver loader for bypassing Windows x64 Driver Signature Enforcement
Native API header files for the System Informer project.
Turn off PatchGuard in real time for win7 (7600) ~ later
bddisasm is a fast, lightweight, x86/x64 instruction decoder. The project also features a fast, basic, x86/x64 instruction emulator, designed specifically to detect shellcode-like behavior.
Azazel is a userland rootkit based off of the original LD_PRELOAD technique from Jynx rootkit. It is more robust and has additional features, and focuses heavily around anti-debugging and anti-dete…
Cheat that uses a driver instead WinAPI for Reading / Writing memory.
The functions interception library written on pure C and NativeAPI with UserMode and KernelMode support
在Windows环境下的进程注入方法:远程线程注入、创建进程挂起注入、反射注入、APCInject、SetWindowHookEX注入
A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware—mirror of https://github.com/processhacker2/processhacker.git