qiufeng1988

followers

following

stars

kyuu-hou's starred repositories

wechat-pc-hook-ws

微信PcHooker websocket api

Language:C++9500

easywsclient

A short and sweet WebSocket client for C++

Language:C++MIT73200

DebugViewPP

DebugView++, collects, views, filters your application logs, and highlights information that is important to you!

Language:C++BSL-1.098400

HyperPlatform

Intel VT-x based hypervisor aiming to provide a thin VM-exit filtering platform on Windows.

Language:C++MIT149200

learn-windows-drivers

Windows drivers 开发的各个基础示例，包含进程、内存、注册表、回调等管理

Language:C++15800

Ark-tools

Windows Ark 工具的工程和一些demo

Language:C++18500

AnotherApexDebug

Language:C++6800

Win32KernelSTL

Using C++ STL on Windows kernle development

Language:C++LGPL-3.08600

WDKExt

Windows Driver Kit Extesion Header (Undoc)

Language:C++LGPL-3.013400

ProcessInjection

Some ways to inject a DLL into a alive process

Language:CMIT35100

Blackbone

Windows memory hacking library

Language:C++MIT471800

PolyHook_2_0

C++20, x86/x64 Hooking Libary v2.0

Language:C++MIT155700

SSLSocket

Two sided secure/insecure socket that can do SSL/TLS connections without the need for OpenSSL libraries. It uses the standard WinCrypt modules

Language:C++2900

barry_dev

Language:C++200

process-inject

在Windows环境下的进程注入方法：远程线程注入、创建进程挂起注入、反射注入、APCInject、SetWindowHookEX注入

Language:C63100

PEExplorer

Portable Executable Explorer

Language:C#15300

LoadPE

Language:C++4900

mmLoader

A library for loading dll module bypassing windows PE loader from memory (x86/x64)

Language:CMIT52700

Windows-Kernel-Explorer

A free but powerful Windows kernel research tool.

pe-sieve

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

Language:C++BSD-2-Clause298900

hollows_hunter

Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).

Language:CBSD-2-Clause196000

hackshield

反外挂带CRC校验

Language:C2400

AntiHook

PoC designed to evade userland-hooking anti-virus.

Language:C8700

dprobe

Dynamic trace toolkit for Windows

Language:C5000

Qt-Socks-Server

A simple socks4/socks4a/socks5 server written in C++/Qt. I run/test it mainly on Windows 7 with MSVC2010, but it should work in any place Qt does with minimal issues.

Language:C++BSD-2-Clause2700

PaperAirplane

一个类似于Proxifier的SOCKS5代理工具

Language:C++BSD-2-Clause17300

HP-Socket

High Performance TCP/UDP/HTTP Communication Component

Language:CNOASSERTION563400

luaforwindows

Lua for Windows is a 'batteries included environment' for the Lua scripting language on Windows. NOTICE: Looking for maintainer.

Language:HTML282900

node-steam

Interface directly with Steam servers from Node.js

Language:JavaScriptMIT100600

wdbgark

WinDBG Anti-RootKit Extension

Language:C++NOASSERTION61100