madtrapper

asio_multithread_ssl_server

Asio multi-thread ssl server

Simpleator

Simpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".

44Con2018

Slides of 44Con 2018

APT-Individual-Combat-Guide

《APT Individual Combat Guide》

certtostore

Hardware Backed Keys and Certificate Store Management on Windows

deeplepub

Translate epub by using deepl api

dxgkrnl_hook

C++ graphics kernel subsystem hook

gitproxy

GreenMeansGoMutexDemo

Demonstrates how to use a Mutex in PowerShell

HyperDeceit

HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate operating system tasks with ease.

illustrated-tls

The Illustrated TLS Connection: Every byte explained

injection

Windows process injection methods

libhv

Like libevent, libev, and libuv, libhv provides event-loop with non-blocking IO and timer, but simpler apis and richer protocols.

logic

Micro8

Gitbook

quiche

🥧 Savoury implementation of the QUIC transport protocol

ReverseTCPShell

PowerShell ReverseTCP Framework

right-click-context

Emacs Right Click Context menu

rust-mmap

simple-display-only-driver

simple-sqlite

Code reading for sqlite backend

spdlog

Fast C++ logging library.

spunky

SuperWeChatPC

超级微信电脑客户端，支持多开、防消息撤销、语音消息备份...开放WeChatSDK

torsniff

torsniff - a sniffer that sniffs torrents from BitTorrent network

UAC_Bypass_In_The_Wild

Windows 10 UAC bypass for all executable files which are autoelevate true .

WinDbg_Scripts

Useful scripts for WinDbg using the debugger data model

Windows-classic-samples

This repo contains samples that demonstrate the API used in Windows classic desktop applications.

WindowsDefenderTools

Tools for instrumenting Windows Defender's mpengine.dll

yara

The pattern matching swiss knife