zmkeh's repositories
LOLDrivers
Living Off The Land Drivers
AetherVisor
Memory hacking library powered by AMD SVM
BlackLotus-analysis-stage2-bootkit-rootkit-stage
Z2A-BlackLotus Challenge stage 2 bootkit-rootkit analysis
bootkit-rs
Rusty Bootkit - Windows UEFI Bootkit in Rust (Codename: RedLotus)
cat-soup
ebpf covert channel rootkit
diaphora
Diaphora, the most advanced Free and Open Source program diffing tool.
dogxss
dogxss(基于Go-admin框架和ezxss_payload完成):ezxss的Golang版本.
Driver-Kernel
simple driver project I made, it's ud on most of today's games
environment-variable-dll-hijacking
Project based on the work of @Wietze on twitter utilizing process level environment variables to have a malicious DLL loaded by a trusted process.
ghosted
A Process Ghosting PoC written in C
MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
NekoClient
Deobfuscated June 2023 CurseForge malware ("Fracturiser") stage 3 payload
OxygenArk
now it's updating....
Piwershell_Terminator
PowerShell script to terminate protected processes such as anti-malware and EDRs.
RecycledInjector
Native Syscalls Shellcode Injector
reflector
refactor the code
SharpTerminator
Terminate AV/EDR Processes using kernel driver
StackMask
A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.
Terminator
Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes
unburned
Finished source of my paid unturned cheat.
VMProtect-Source
Source of VMProtect (NOT OFFICIALLY)
wdk_template
Windows kernel driver template for cmkr (with testsigning).
WinArk
Windows Anti-Rootkit Tool
Windows-Batch-Deployment
A programmable and rootkit-like Windows remote access tool.
windows-internals
My notes while studying Windows internals
WindowsDefender_Rebuild
An attempt at reversing WindowsDefender
zmkeh.github.io
Hacker is a Jekyll theme for GitHub Pages