A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals…

Leveraging Cheat Engine with VT-x Hypervisor for Enhanced Game Analysis

Fluent-UI For QT-Widget

C and C++ headers, C# and Python classes, Rust files and Go package for icon fonts Font Awesome, Fork Awesome, Google Material Design icons and symbols, Pictogrammers Material Design icons, Kenney …

Proof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijack execution flow

A new technique that can be used to bypass memory scanners. This can be useful in hiding problematic code (such as reflective loaders implemented by C2 beacons) or other problematic executables tha…

个人发卡源码，发卡系统，二次元发卡系统，二次元发卡源码，发卡程序，动漫发卡，PHP发卡源码，异次元发卡

A Kernel Driver that can be used for a cheat or malware base to circumvent common cache & structure table checks. PsLoadedModuleList however requires a PG Bypass on (Some) Machines > 22H2 Win10, No…

This is a repo of my previous BEKernelDriver but updated to add better protections and a more detailed setup. also with a good bit of code cleanup.

Direct Memory Access (DMA) Attack Software

Windows Research Kernel VS2022 Solution

An Unsigned Driver Mapper for Windows 10 22H2 -> Windows 11 23H2 that uses PdFwKrnl to exploit the Read/Write IOCTL Calls to disable DSE & PG to map the unsigned driver.

The Next Generation of Anti-Rookit(ARK) tool for Windows.

Manual map shellcode (aka byte array) injector

Example driver on how to use SKLib

Standard Kernel Library for Windows hacking in C++

kernel mode anti cheat

A windows kernel mode driver that spoofs serial numbers when mapped and executes a malicious payload (FULLY from kernel!!!)

Killer tool is designed to bypass AV/EDR security tools using various evasive techniques.

Using bezier to simulate mouse moving.

热门网络游戏辅助开发教程

Apex Legends QEMU/KVM hack

A bunch of parsers for PE and PDB formats in C++

Syringe allows the injection of code from a DLL into a process it started.

Stealthy UM <-> KM communication system without creating any system threads, permanent hooks, driver objects, section objects or device objects.

菜霸 PUBG 辅助