zenseahi's starred repositories
Emergency-Response-Notes
应急响应实战笔记,一个安全工程师的自我修养。
raddebugger
A native, user-mode, multi-process, graphical debugger.
awesome-virtualization
Collection of resources about Virtualization
fridaUiTools
frida工具的缝合怪
r77-rootkit
Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.
VivienneVMM
VivienneVMM is a stealthy debugging framework implemented via an Intel VT-x hypervisor.
HWSyscalls
HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.
rwProcMem33
Linux ARM64内核硬件进程内存读写驱动、硬件断点调试驱动。硬件级读写Linux进程内存、硬件级下断点。
design-pattern
Design Patterns In Modern C++ 中文版翻译
ETWProcessMon2
ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.
binderceptor
A binder interceptor framework for Android
MemoryRanger
MemoryRanger protects kernel data and code by running drivers and hosting data in isolated kernel enclaves using VT-x and EPT features. MemoryRanger has been presented at the BlackHat, HITB, CDFSL.
reverse_pyinstaller
pyinstaller打包的exe逆向还原项目
Etw-SyscallMonitor
Monitors ETW for security relevant syscalls maintaining the set called by each unique process