killaragorn's repositories
sec-books-part1
:books: 网安类绝版图书
Anti-Rootkit
Windows Anti-Rootkit Tool
bindiff
Quickly find differences and similarities in disassembled code
BlackHat2023_pdf
Conference slides
C2
C2-下一代RAT
cy_jsvmp
The basic implementation ES5 syntax is translated into VMP, and part of the ES6 syntax is also implemented
defender-control
An open-source windows defender manager. Now you can disable windows defender permanently.
DllNotificationInjection
A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and remote processes.
electron-ci-boilerplate
Boilerplate for Electron deployments on CI servers
ElfMapper
ElfMapper
KACE
Emulate Drivers in RING3 with self context mapping or unicorn
libmem
Advanced Game Hacking Library for C/C++, Rust and Python (Windows/Linux/FreeBSD) (Process/Memory Hacking) (Hooking/Detouring) (Cross Platform) (x86/x64/ARM/ARM64) (DLL/SO Injection) (Internal/External)
MS
巨硬
openedr
Open EDR public repository
qemu-anti-detection
A patch to hide qemu itself, bypass mhyprot,EAC,nProtect / VMProtect,VProtect, Themida, Enigma Protector,Safegine Shielden
query-pdb
query-pdb is a server-side software for parsing PDB files. The software provides PDB online parsing service.
SKRoot-linuxKernelRoot
新一代SKRoot,挑战全网root检测手段,跟面具完全不同思路,摆脱面具被检测的弱点,完美隐藏root功能,全程不需要暂停SELinux,实现真正的SELinux 0%触碰,通用性强,通杀所有内核,不需要内核源码,直接patch内核,兼容安卓APP直接JNI调用,稳定、流畅、不闪退。
study_notes
killaragorn的读书笔记
titan
Titan is a VMProtect devirtualizer
Voyager
Voyager - A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)