llkbkh's repositories
Illicit-memory-allocation
This driver hooks a device object for ioctl and uses mdls to allocate physical pages and manually injects an entry into a process's page table.
fineftp-server
📦 C++ FTP Server Library for Windows 🪟, Linux 🐧 & more 💾
HexRaysPyTools
IDA Pro plugin which improves work with HexRays decompiler and helps in process of reconstruction structures and classes
system_trace_tool
内核驱动加载/卸载痕迹清理,努力绕过反作弊吧 PiDDBCacheTable and MmLastUnloadedDriver
ac
kernel mode anti cheat
al-khaser
Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
Alcatraz
x64 binary obfuscator
awesome-ida-x64-olly-plugin
A curated list of IDA x64DBG, Ghidra and OllyDBG plugins.
BugChecker
SoftICE-like kernel debugger for Windows 11
ChatGPT-Next-Web
A well-designed cross-platform ChatGPT UI (Web / PWA / Linux / Win / MacOS). 一键拥有你自己的跨平台 ChatGPT 应用。
ETWProcessMon2
ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.
FakeSign
自建时间戳服务器实现伪签名驱动证书 Implementing Pseudo Signature with Self-Sign Timestamp Servers
frp
A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.
Gepetto
IDA plugin which queries OpenAI's ChatGPT to explain decompiled functions
KsDumper
Dumping processes using the power of kernel space !
MSFT_DriverBlockList
Repository of Microsoft Driver Block Lists based off of OS-builds
nmi-callback-handler
nmi stackwalking + module verification
Phant0m
Windows Event Log Killer
SheLLVM
A collection of LLVM transform and analysis passes to write shellcode in regular C
SilentMoonwalk
PoC Implementation of a fully dynamic call stack spoofer
titan
Titan is a VMProtect devirtualizer
valorant_external_cheat
valorant external cheat , aimbot and wallhacker
VmwareHardenedLoader
Vmware Hardened VM detection mitigation loader (anti anti-vm)
WinArk
Windows Anti-Rootkit Tool