☆117Feb 11, 2022Updated 4 years ago
Alternatives and similar repositories for Protect_Process
Users that are interested in Protect_Process are comparing it to the libraries listed below
Sorting:
- ☆74Jan 15, 2022Updated 4 years ago
- ☆174Mar 9, 2022Updated 3 years ago
- Static user/kernel mode library that allows access to all functions and global variables by extracting offsets from the PDB☆118May 29, 2025Updated 9 months ago
- ☆17Apr 21, 2022Updated 3 years ago
- Ready-to-use headers for Windows Kernel SSDT indices☆11Apr 12, 2020Updated 5 years ago
- ☆16Oct 31, 2021Updated 4 years ago
- 内核级别隐藏指定窗口☆320Feb 9, 2022Updated 4 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆121Feb 8, 2022Updated 4 years ago
- Kill Protected Process Light Process (include av)☆58Sep 15, 2023Updated 2 years ago
- Hiding the window from screenshots using the function win32kfull::GreProtectSpriteContent☆628Dec 26, 2024Updated last year
- ☆38Nov 30, 2022Updated 3 years ago
- Hijack NotifyRoutine for a kernelmode thread☆41Jun 4, 2022Updated 3 years ago
- base for testing☆186Sep 28, 2024Updated last year
- ☆27Jun 24, 2022Updated 3 years ago
- ☆69Aug 31, 2021Updated 4 years ago
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆159Apr 13, 2023Updated 2 years ago
- POC usermode <=> kernel communication via ALPC.☆72Jun 6, 2024Updated last year
- ☆56Nov 21, 2022Updated 3 years ago
- ☆193May 1, 2023Updated 2 years ago
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆21Jan 25, 2022Updated 4 years ago
- 之前那份是7600的,每次编译搞得好麻烦。更新一个VS2017可以直接编译的。☆154Jun 5, 2019Updated 6 years ago
- Static Library For Windows Drivers☆41Dec 13, 2025Updated 2 months ago
- 从MmPfnData中枚举进程和页目录基址☆207Aug 18, 2023Updated 2 years ago
- InfinityHookPro Win7 -> Win11 latest☆551Feb 7, 2023Updated 3 years ago
- a debugger use vt technology☆356Jun 30, 2022Updated 3 years ago
- Kernel Inject DLL☆352Mar 21, 2023Updated 2 years ago
- Enum and Remove Hook in Windows☆51Dec 11, 2025Updated 2 months ago
- Archive R/W into any protected process by changing the value of KTHREAD->PreviousMode☆163Jul 31, 2022Updated 3 years ago
- Manual mapper that uses PTE manipulation, Virtual Address Descriptor (VAD) manipulation, and forceful memory allocation to hide executabl…☆385Jan 29, 2022Updated 4 years ago
- ☆144Dec 10, 2022Updated 3 years ago
- ☆192Dec 8, 2021Updated 4 years ago
- IO隐藏通信封装☆17May 31, 2021Updated 4 years ago
- PsSetCreateProcessNotifyRoutine/Ex/Ex2 hook☆12May 30, 2024Updated last year
- Interprocess communication via a covert timing channel☆26Oct 24, 2025Updated 4 months ago
- ☆183May 20, 2022Updated 3 years ago
- r/w virtual memory without attach☆218Oct 19, 2023Updated 2 years ago
- Kernel LdrLoadDll injector☆264Oct 6, 2018Updated 7 years ago
- Detect removed thread from PspCidTable.☆75Mar 18, 2022Updated 3 years ago
- Some garbage drivers written for getting started☆65Dec 31, 2019Updated 6 years ago