109 Commits

Author	SHA1	Message	Date
qtkite	84b7bcb66e	DisableRealtimeMonitoring toggle	2021-07-19 23:01:36 +10:00
qtkite	747a1be05b	disabling defender from wmi!	2021-07-19 22:03:27 +10:00
qtkite	feda4728ee	update comment	2021-07-19 21:41:37 +10:00
qtkite	d3d46a1e2a	renamed test func accordingly	2021-07-19 21:39:58 +10:00
qtkite	b1ce90aff8	implemented windows example	2021-07-19 21:39:24 +10:00
qtkite	5255a6cfae	connect to wmi + proxy security	2021-07-19 21:28:54 +10:00
qtkite	5cd0acc3db	step 1->3 from msdn	2021-07-19 21:13:14 +10:00
qtkite	de966641a9	shell32	2021-07-19 20:42:39 +10:00
qtkite	b4e809ea53	wmic namespace + shell hook	2021-07-19 20:27:27 +10:00
qtkite	6649ae734d	com class	2021-06-26 18:14:52 +10:00
qtkite	2fbc1a33d7	more hooks xd	2021-06-08 01:18:24 +10:00
qtkite	3a4cc3d0ee	start av	2021-06-08 00:49:35 +10:00
qtkite	c449f56fb7	wmic namespace + refactor	2021-06-07 23:04:18 +10:00
qtkite	da7d72af19	vtable call dump	2021-06-07 22:58:51 +10:00
qtkite	9ac65c6009	more wmic templates	2021-06-07 20:35:17 +10:00
qtkite	41fc53e62e	change of plans, going to use wmic	2021-06-07 05:15:02 +10:00
qtkite	e8ca1c6fd0	removed to-do	2021-06-07 04:06:46 +10:00
qtkite	10b7ce23e0	enable + disable routine hooks	2021-06-07 04:05:26 +10:00
qtkite	9a09527155	registry edits done	2021-06-06 22:28:04 +10:00
zhwu2697	4688174100	releasing handles after use	2021-06-06 20:58:35 +10:00
zhwu2697	3b11aacf3c	refactored key	2021-06-06 20:53:46 +10:00
zhwu2697	efe72a25f0	added flags for dbg	2021-06-05 03:06:57 +10:00
zhwu2697	b6e8f369f9	fixed export	2021-06-05 02:39:06 +10:00
zhwu2697	a29d2d6aec	implemented defender check	2021-06-05 02:36:56 +10:00
zhwu2697	321ba8f9cb	fixed TODO	2021-06-04 23:17:17 +10:00
zhwu2697	06246f7c5b	crashes fixed itself ig	2021-06-04 23:11:41 +10:00
zhwu2697	a66452c280	added full log dump + hook fixes	2021-06-04 23:06:12 +10:00
zhwu2697	74b07c7933	hooked RegEnumKeyExW	2021-06-04 22:02:25 +10:00
zhwu2697	867d96156d	fixed enum bug + wrong ret addrr	2021-06-04 15:44:19 +10:00
zhwu2697	65f8affe77	hk_RegConnectRegistryW ... also fixed unreferenced calls	2021-06-04 14:42:40 +10:00
qtKite	744180f585	fixed hk_RegCreateKeyExW calling conv	2021-06-04 02:14:35 +10:00
qtKite	ef5d3a847c	fixed get_func_addr syntax	2021-06-04 02:01:34 +10:00
qtKite	94947bcab9	implemented hooks	2021-06-04 01:58:47 +10:00
qtKite	c749b0ac7d	cleared up TODO	2021-06-04 01:49:03 +10:00
qtKite	f9dbc5ce45	hk_RegCreateKeyExW template	2021-06-04 01:45:22 +10:00
qtKite	b924e2630f	hk_RegSetValueExW hook	2021-06-04 01:31:16 +10:00
qtKite	bd02aa4a82	handle command hook test	2021-06-03 22:26:11 +10:00
qtKite	7c3cd899d9	included pattern	2021-06-03 21:58:02 +10:00
qtKite	5d73b3d1fc	activation routine hook	2021-06-03 21:56:23 +10:00
qtKite	de9d832cdf	str helper	2021-06-03 21:29:38 +10:00
qtKite	18ffd07a68	fixed hooks w function	2021-06-03 21:24:17 +10:00
qtKite	0111d25ed1	fixed hooks stdcall	2021-06-03 21:10:12 +10:00
qtKite	8dd821fd3c	removed hooked example, added basic impl	2021-06-03 17:25:22 +10:00
qtKite	8ac410d229	typo fix	2021-06-03 17:02:08 +10:00
qtKite	7065fb7de8	RegDeleteValueW hook	2021-06-03 17:01:20 +10:00
qtKite	888d4d1dd1	precompiled binary files	2021-06-03 16:51:36 +10:00
qtKite	6b2cbecf70	detour readme	2021-06-03 16:49:01 +10:00
qtKite	f9ccb5be9f	to-do for dcontrol	2021-06-03 16:14:25 +10:00
qtKite	87ebe513f8	changed indentation	2021-06-03 16:09:30 +10:00
qtKite	9ad42e4449	shortened hk names	2021-06-03 16:06:19 +10:00
qtKite	ff54aacc7f	added ms doc for RegenumValueW	2021-06-03 16:04:36 +10:00
qtKite	5721fc6477	added basic book	2021-06-03 16:04:07 +10:00
qtKite	26598c0e01	x64 dumper configuration	2021-06-03 14:34:02 +10:00
qtKite	8aaef07cef	TO-DO comments	2021-06-03 14:11:15 +10:00
qtKite	452a8cbe82	detour note	2021-06-03 14:09:04 +10:00
qtKite	68634f2a15	added list of functions to hook	2021-06-03 14:08:45 +10:00
qtKite	c18a088480	added detour binaries	2021-06-03 14:00:04 +10:00
qtKite	6d2285bc9d	dumper files	2021-06-03 13:42:49 +10:00
zhwu2697	9261bec39c	visual studio project	2021-05-15 20:10:31 +10:00