TA 关注的仓库 - jiweihong (jiweihong)

Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).

最近更新: 4年多前

Watch jiweihong/pe-sieve

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

最近更新: 4年多前

Watch jiweihong/SysWhispers

AV/EDR evasion via direct system calls.

最近更新: 4年多前

Watch jiweihong/Blackbone

Windows memory hacking library

最近更新: 4年多前

Watch jiweihong/PeaceMaker

PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.

最近更新: 4年多前

Watch jiweihong/Detours

Detours is a software package for monitoring and instrumenting API calls on Windows. It is distributed in source code form.

最近更新: 4年多前

TA 关注的仓库 (98)

Watch jiweihong/AVulnerabilityChecker

Watch jiweihong/md5

Watch jiweihong/udis86

Watch jiweihong/dynamorio

Watch jiweihong/hollows_hunter

Watch jiweihong/pe-sieve

Watch jiweihong/SysWhispers

Watch jiweihong/Blackbone

Watch jiweihong/PeaceMaker

Watch jiweihong/Detours