滥用cow机制进行全局注入

This repo contains driver samples prepared for use with Microsoft Visual Studio and the Windows Driver Kit (WDK). It contains both Universal Windows Driver and desktop-only driver samples.

Inline syscalls made easy for windows on clang

Convenient high-level C++ wrapper around the Windows Registry API

Minimal C++20 STL replacement library. Simpler, smaller, and in many cases faster.

A collection of modern C++ libraries, include coro_http, coro_rpc, compile-time reflection, struct_pack, struct_json, struct_xml, struct_pb, easylog, async_simple etc.

This is a POC Test project for INTEL CPUs on blocking NMI Entries through the IDT Handler.

Kernel Level NMI Callback Blocker

PoC Implementation of a fully dynamic call stack spoofer

Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation from scanners and analysts.

A package manager and build system for C++

An external cheat for CS2, created for educational purposes to explore the game.

ArkScript is a small, fast, functional and scripting language for C++ projects

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

Cheat for Garry's Mod (x64)

Lightweight Error Augmentation Framework

Garry's Mod Lua interface manipulator and dumper.

Garry's Mod Backdoor Menu

鸽组汉化，扫除那些冲突的汉化

Hypervisor with EPT hooking support.

Win32 and Kernel abusing techniques for pentesters

An improved Detours.

Logging library for kernel drivers written for the Windows NT operating system.

RootKit & Cheat Scanner - Windows

Standard Kernel Library for Windows hacking in C++

Nidhogg is an all-in-one simple to use windows kernel rootkit.

A Kernel Driver that can be used for a cheat or malware base to circumvent common cache & structure table checks. PsLoadedModuleList however requires a PG Bypass on (Some) Machines > 22H2 Win10, No…

Single-header, minimalistic, cross-platform hook library written in pure C