xrv3ovl's repositories
BlogHyperV
Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/
CodaPinTracer
Lightweight WINAPI tracing with Pin
drvmap
driver mapper / capcom wrapper
furikuri
(In dev)furikuri is framework for code protection
DeviceMon
VT-based PCI device monitor (SPI)
DLLHSC
DLLHSC - DLL Hijack SCanner a tool to assist with the discovery of suitable candidates for DLL Hijacking
DriverInjectDll
Using Driver Global Injection dll, it can hide DLL modules
GpuzMaper
using gpuz to load driver
HideProcess
A basic Direct Kernel Object Manipulation rootkit that removes a process from the EPROCESS list, hiding it from the Task Manager
injectopi
A set of tutorials about code injection for Windows.
MBA
Malware Behavior Analyzer
mydlp-endpoint-win
MyDLP Windows Endpoint Filter
NoMercy
Open source anti cheat
PeaceMaker
PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.
physmem_drivers
A collection of various vulnerable (mostly physical memory exposing) drivers.
ppdump-public
Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDump() Shellcode
pplib
Elevate a process to be a protected process
SignThief
Windows PE Signature Thief in C++
synacor-vm
Virtual Machine implementation, for the toy Synacor achitecture
Windows-Research-Kernel-WRK-
Windows Research Kernel Source Code
Windows_OS_Internals_Curriculum_Resource_Kit-ACADEMIC
Windows_OS_Internals_Curriculum_Resource_Kit-ACADEMIC
WindowsComponentsSUM
A collection of Windows Components(Mostly is ntoskrnl.exe)
WindowsKernelPhilosophy
Windows内核设计**
x64-syscall
x64 syscall caller in C++.
XenoScan
Open source memory scanner written in C++