xuxian's repositories
FuckFileMonitor
FuckFileMonitor 将文件加密伪装成图片,可以通过IM工具发送图片来pass内网文件监控.
vt-debuuger
a debugger use vt technology
awesome-windows-kernel-security-development
windows kernel security development
bin2cpp
bin2cpp: The easiest way to embed small files into a c++ executable. bin2cpp converts text or binary files to C++ files (*.h, *.cpp) for easy access within the code.
bit7z
A C++ static library offering a clean and simple interface to the 7-zip shared libraries.
ComWeChatRobot
PC微信机器人,实现获取通讯录,发送文本、图片、文件等消息,封装COM接口供Python、C#调用
curlpp
C++ wrapper around libcURL
EASTL
EASTL stands for Electronic Arts Standard Template Library. It is an extensive and robust implementation that has an emphasis on high performance.
go-tun2socks
A tun2socks implementation written in Go.
hvpp
hvpp is a lightweight Intel x64/VT-x hypervisor written in C++ focused primarily on virtualization of already running operating system
KasperskyHook
Hook system calls on Windows by using Kaspersky's hypervisor
libwsk
The Kernel-Mode Winsock library, supporting TCP, UDP and Unix sockets (DGRAM and STREAM).
mars
Mars is a cross-platform network component developed by WeChat.
micore
It is mainly the implementation of user-level functions in the kernel on the Windows platform.
NoVmp
Static devirtualizer for VMProtect x64 3.x. powered by VTIL.
pe-sieve
Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
Pluto-Obfuscator
Obfuscator based on LLVM 12.0.1
processhacker
A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware.
Squirrel.Windows
An installation and update framework for Windows desktop apps
Veil
Windows internal undocumented API.
WeChatMsg
提取微信聊天记录,将其导出成HTML、Word、CSV文档永久保存,对聊天记录进行分析生成年度聊天报告
wintun
Mirror only. Official repository is at https://git.zx2c4.com/wintun