0mWindyBug / KDP-compatible-driver-loaderLinks
KDP compatible unsigned driver loader leveraging a write primitive in one of the IOCTLs of gdrv.sys
☆150Updated last year
Alternatives and similar repositories for KDP-compatible-driver-loader
Users that are interested in KDP-compatible-driver-loader are comparing it to the libraries listed below
Sorting:
- load unsigned kernel-driver by patching dse in 248 lines☆124Updated last year
- ☆208Updated 2 years ago
- base for testing☆169Updated 9 months ago
- Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver☆172Updated last year
- manual map unsigned driver over signed memory☆196Updated last year
- Unknowncheats Magically Optimized Tidy Mapper using nvaudio☆128Updated last year
- Standard Kernel Library for Windows manipulation in C++☆166Updated last week
- driver manual mapper powered by https://github.com/estimated1337/lenovo_exec☆110Updated 2 years ago
- Kernel driver for detecting Intel VT-x hypervisors.☆188Updated last year
- Use RTCore64 to map your driver on windows 11.☆120Updated last month
- nmi stackwalking + module verification☆124Updated last year
- Kernel DLL Injector using NX Bit Swapping and VAD hide for hiding injected DLL☆216Updated 4 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆113Updated 3 years ago
- ☆154Updated last year
- A mapper that maps shellcode into loaded large page drivers☆283Updated 3 years ago
- State of the art DLL injector that took 20 minutes to make☆217Updated last year
- Drawing from kernelmode without any hooks☆164Updated 2 years ago
- ☆181Updated 3 years ago
- IoCreateDriver Implementation, it can be handful if you're trying to bypass anticheats☆89Updated last month
- Shows an example of how to implement VT-d/AMD-Vi on Windows☆118Updated last year
- 从MmPfnData中枚举进程和页目录基址☆178Updated last year
- Reverse Engineering a signed kernel driver packed and virtualized with VMProtect 3.6☆103Updated 2 years ago
- Loads a signed kernel driver which allows you to map any driver to kernel mode without any traces of the signed / mapped driver.☆343Updated 3 years ago
- Archive R/W into any protected process by changing the value of KTHREAD->PreviousMode☆155Updated 2 years ago
- x64 Windows kernel driver mapper, inject unsigned driver using anycall☆161Updated last year
- ☆78Updated last year
- This project migrated to https://github.com/backengineering/llvm-msvc☆143Updated last year
- Kernel Level NMI Callback Blocker☆99Updated 10 months ago
- Load your driver like win32k.sys☆255Updated 2 years ago
- just proof of concept. hooking MmCopyMemory PG safe.☆74Updated last year