UltimateAntiCheat is a free & open source usermode anti-cheat system made to detect and prevent common attack vectors in game hacking
-
Updated
Jun 30, 2024 - C++
UltimateAntiCheat is a free & open source usermode anti-cheat system made to detect and prevent common attack vectors in game hacking
Delphi library for system programming on Windows using Native API
A reference of Windows API function calls, including functions for file operations, process management, memory management, thread management, dynamic-link library (DLL) management, synchronization, interprocess communication, Unicode string manipulation, error handling, Winsock networking operations, and registry operations.
Just another process dumping tool for Windows, supporting network delivery and snapshots
PoCs and tools for investigation of Windows process execution techniques
An advanced tool for working with access tokens and Windows security policy.
A DLL injection of RdpThief.dll to perform API hooking and extract RDP credentials
My notes while studying Windows internals
Microsoft Developer Blogs Search Tool
Single header version of System Informer's phnt library.
Livro: Engenharia Reversa - Fundamentos e Prática
Windows Thread Pool Injection Havoc Implementation
Standard and DLL Manual Mapping
PE Explorer in C++ (x86 / x64) - PE file parser, retrieve exports and imports
Little tool and (header-only lib) to investigate Windows Internals. Shout out to @zodiacon. No pull requests (this is actually a mirrored Mercurial repo).
Nidhogg is an all-in-one simple to use rootkit for red teams.
An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in general (sandboxing).
Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".
A lightweight native DLL mapping library that supports mapping directly from memory
Add a description, image, and links to the windows-internals topic page so that developers can more easily learn about it.
To associate your repository with the windows-internals topic, visit your repo's landing page and select "manage topics."