A POC for Windows Extension Host hooking
☆24Jul 13, 2019Updated 6 years ago
Alternatives and similar repositories for exthost
Users that are interested in exthost are comparing it to the libraries listed below
Sorting:
- POC for a race condition exploit using directory junctions in Windows☆17Apr 26, 2020Updated 5 years ago
- Final Transparent encrypted version☆14Jan 10, 2017Updated 9 years ago
- Open Course for diving security internal☆52Nov 11, 2019Updated 6 years ago
- ☆29Jan 15, 2021Updated 5 years ago
- exploit termdd.sys(support kb4499175)☆61Jul 15, 2019Updated 6 years ago
- Research on Windows Kernel Executive Callback Objects☆315Feb 22, 2020Updated 6 years ago
- A driver that hooks C: volume using symbolic link callback to track all FS access to the volume☆110Apr 24, 2020Updated 5 years ago
- This repository contains some tools that I have written in the past☆28Nov 11, 2023Updated 2 years ago
- HAXM hypervisor client☆18Nov 30, 2018Updated 7 years ago
- Monitor ETW events for Windows process mitigation policies, with stack traces☆31Oct 7, 2022Updated 3 years ago
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆58Jun 21, 2020Updated 5 years ago
- L'application pour bloquer un paquet, snipping, analyser le réseau☆11Dec 23, 2016Updated 9 years ago
- Stealthy Injector that leverages a vulnerable driver and other exploits to remain undetected☆37Dec 10, 2018Updated 7 years ago
- A quick String < - > HEX tool for Windows with Drag & Drop and File saving☆11Dec 4, 2018Updated 7 years ago
- Windows device tree walker☆15Sep 19, 2018Updated 7 years ago
- MouHidInputHook enables users to filter, modify, and inject mouse input data packets into the input data stream of HID USB mouse devices …☆11Jul 11, 2019Updated 6 years ago
- INF Studio for easier working with driver installation files☆39Nov 11, 2023Updated 2 years ago
- x86/x64 dll injector☆31May 17, 2022Updated 3 years ago
- Data Obfuscation for C/C++ Code Based on Residue Number Coding (RNC)☆24May 20, 2021Updated 4 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆240Nov 6, 2019Updated 6 years ago
- hooking KiUserApcDispatcher☆27Apr 3, 2017Updated 8 years ago
- ☆12Aug 10, 2019Updated 6 years ago
- copy of tdifw lib☆10Jun 15, 2017Updated 8 years ago
- 基于WinDivert实现的一个包过滤与截断程序☆13Jul 22, 2018Updated 7 years ago
- ☆12Oct 19, 2017Updated 8 years ago
- Utility for dumping all the information Capstone has on given instructions.☆23Oct 1, 2021Updated 4 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t�…☆65Jun 19, 2019Updated 6 years ago
- 粗暴地枚举管理内核的WFP对象。 Manage kernel WFPs in a brutal way.☆27Jan 14, 2018Updated 8 years ago
- Bypass UAC elevation on Windows 8 (build 9600) & above.☆58Feb 2, 2026Updated 3 weeks ago
- Lightweight WINAPI tracing with Pin☆27Aug 22, 2019Updated 6 years ago
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆55Jul 8, 2022Updated 3 years ago
- Intercepting DeviceControl via WPP☆138Nov 18, 2019Updated 6 years ago
- C Header Only Library for Virii☆11Nov 17, 2020Updated 5 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22May 31, 2017Updated 8 years ago
- ☆25May 21, 2021Updated 4 years ago
- Dumps information about all the callback objects found in a dump file and the functions registered for them☆37Oct 21, 2020Updated 5 years ago
- 谷歌2011年开始开发的一款专注于速度的压缩,解压库,速度完胜zlib。☆14Apr 28, 2018Updated 7 years ago
- Windows user mini-dump helper library to extract data from it.☆13May 17, 2025Updated 9 months ago
- Windows file system driver which allows to block access to files at run-time (C/C++, C#, WDK, SDK)☆13Jan 1, 2023Updated 3 years ago