killF8's repositories
AllTools
All reasonably stable tools
Black-Angel-Rootkit
Black Angel is a Windows 11/10 x64 kernel mode rootkit. Rootkit can be loaded with enabled DSE while maintaining its full functionality.
BlackLotus
BlackLotus UEFI Windows Bootkit
Chaos-Rootkit
x64 ring0 rootkit with process hiding, privilege escalation, and capabilities for protecting and unprotecting processes
DrvMon
a monitoring windows driver calls kernel api tools
FakeSign
自建时间戳服务器实现伪签名驱动证书 Implementing Pseudo Signature with Self-Sign Timestamp Servers
FreeRDP
FreeRDP is a free remote desktop protocol library and clients
Hades-Windows
Hades HIDS/HIPS for Windows
i2pd
🛡 I2P: End-to-End encrypted and anonymous Internet
ImHex
🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
iMonitor
iMonitor(冰镜 - 终端行为分析系统)
Jormungandr
Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.
jsoncpp
A C++ library for interacting with JSON.
MalwareAdventurez
My adventures in learning about different malware techniques, such as syscalls, code injection, unhooking or sandbox evasion.
mimikatz
A little tool to play with Windows security
OpenArk
The Next Generation of Anti-Rookit(ARK) tool for Windows.
PPLcontrol
Controlling Windows PP(L)s
ProcessHider
Post-exploitation tool for hiding processes from monitoring applications
RansomTuga
An advanced Ransomware written in C++ and fully customizable
RmEye
戎码之眼是一个window上的基于att&ck模型的威胁监控工具.有效检测常见的未知威胁与已知威胁.防守方的利剑
Sandboxie
Sandboxie Plus & Classic
srt
Secure, Reliable, Transport
systeminformer
A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals.com
Terminator
Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes
UsbDk
Usb Drivers Development Kit for Windows
wazuh
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
WFPExplorer
Windows Filtering Platform Explorer
WinArk
Windows Anti-Rootkit Tool
windows-internals
My notes while studying Windows internals
yuze
A socksv5 proxy tool Written by CLang. 一款纯C实现的基于socks5协议的轻量内网穿透工具,支持ew的全部数据转发方式,支持跨平台使用