jay's repositories
rewolf-x86-virtualizer
Simple VM based x86 PE (portable exectuable) protector.
8086tiny
Official repository for 8086tiny: a tiny PC emulator/virtual machine
bluepillstudy
school project for learning cpu virtualize technology by understanding the blue pill project
eagle
Bypass Antivm and Cuckoo Sandbox Techniques
GetProcAddress
Recreation of GetProcAddress without external dependencies on Windows Libraries
HIDInput
HIDInput is a device driver that emulates mouse and/or keyboard input, and has been supplemented with easy to use functions that aid in the decision making process of when or how to synthesize such input.
HypervisorsDetection
This is the first software system, which can detect a stealthy hypervisor and calculate several nested ones even under countermeasures.
lde64
LDE64 (relocatable) source code
metame
metame is a metamorphic code engine for arbitrary executables
ObRegisterCallBacksByPass
Modify process handle permissions
phantasm-x86-virtualizer
Code virtualizer
PinProject
These are some materials of using intel pin tool to do the dynamic code analysis job. This is the SRT project I finished.
ReflectiveDLLInjection
Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.
RunPE
Code that allows running another windows PE in the same address space as the host process.
SEH-Over-VEH
Dispatcher for Structured Exception Handling realization inside Vectored Handler
sems
Virtualbox, VirtualMachine, Cuckoo, Anubis, ThreatExpert, Sandboxie, QEMU, Analysis Tools Detection Tools
StudyBooks
我的学习资料,包括书籍、网址等
virtdbg
Automatically exported from code.google.com/p/virtdbg
VirtualDbg
Test code only. Not reliable for actual use.
winSRDF
Security Research and Development Framework
x64emu
x86_x64 emulator