y11en's Projects
NINA: No Injection, No Allocation x64 Process Injection Technique
Nishang - PowerShell for penetration testing and offensive security.
[调试器]正在开发中
Native win32 executables loader
Dll injection through code page id modification in registry. Based on jonas lykk research
A command line tool that recreates the famous data decryption effect seen in the 1992 movie Sneakers.
A fast, scalable, distributed game server framework for C++, include actor library, network library,can be used as a real time multiplayer game engine ( MMO RPG ), which plan to support C#/Python/Lua script, and support Unity3d, Cocos2dx, FlashAir client access.
NoBastian - Universal Ring3 IPC based BattlEye/EAC/FaceIt/ESEA/MRAC bypass
Linux下用于远程加载可执行文件以达到内存加载的目的
Kernel driver for detecting Intel VT-x hypervisors.
Hardware-Accelerated Hypervisor solution with support to complex functions and purposes.
An Obfuscator for .NET assembly
MSBuild without MSbuild.exe
get_module, read/write mem, mouse emulation
Hiding the window from screenshots using the function win32kfull::ChangeWindowTreeProtection
A static devirtualizer for VMProtect x64 3.x. powered by VTIL.
C++17 PE manualmapper
A wrapper library around native windows sytem APIs
Windows NT x64 syscall fuzzer
Minimal PoC developed as discuss in https://captmeelo.com/redteam/maldev/2022/05/10/ntcreateuserprocess.html
Doom running in the NT kernel
Fast NTFS Directory Scan and Search
Lua in kernel-mode because why not.
The Windows Research Kernel (WRK)
Ever wanted to execute PHP in your kernel driver? Look no further!
UserMode call NtProc sample
Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.