HadesW

mhy_exp

Mhy Exp (exploit signed driver)

power-kill

power-kill is a project that kill protected processes (such as EDR or AV) by injecting shellcode into high privilege processes

dwm-overlay

Top level overlay drawing for game cheating using dwm.exe

HttpRAT

HTTPS GET RAT and Memory Loader

PowerReadWrite

Use Driver access process memory

injection

Windows process injection methods

myvtcp6.0

Reliable UDP, Author Whg

SimpleRemoter

基于gh0st的远程控制器：实现了终端管理、进程管理、窗口管理、远程桌面、文件管理、语音管理、视频管理、服务管理、注册表管理等功能，优化全部代码及整理排版，修复内存泄漏缺陷，程序运行稳定。此项目初版见：https://github.com/zibility/Remote

Unreal-Finder-Tool

Useful tool to help you fetch and dump Unreal Engine 4 Games information.

al-khaser

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

awesome-windows-kernel-security-development

windows kernel security development

dxx

Windows Kernel Driver with C++ runtime

kiero

Universal graphical hook for a D3D9-D3D12, OpenGL and Vulcan based games.

NoMercy

Open source anti cheat

pubg-public-esp

Voyager

WeChatRobot

PC版微信机器人

acefile

read/test/extract ACE 1.0 and 2.0 archives in pure python

Hades-Windows

Purity toolsHades A HIDS is designed run on Windows

InfinityHook

Hook system calls, context switches, page faults and more.

MS17-010

MS17-010

newbluepill

new blue pill

NoirVisor

Hardware-Accelerated Hypervisor solution with support to complex functions and purposes.

openedr

Open EDR public repository

Shark

Turn off PatchGuard in real time for win7 (7600) ~ win10 (17763).

Splitgate-Internal

An Internal Cheat For Unreal Engine Based Game "Splitgate"

venom

venom (metasploit) shellcode generator/compiler/listener

VmwareHardenedLoader

Vmware Hardened VM detection mitigation loader (anti anti-vm)

Windows-Kernel-Explorer

A free but powerful Windows kernel research tool

WindowsInternals

Windows Internals Book 7th edition Tools