Ahora57 / UnabomberLinks
Improved VMP Idea(detect anti-anti-debug tools by bug)
☆46Updated 2 years ago
Alternatives and similar repositories for Unabomber
Users that are interested in Unabomber are comparing it to the libraries listed below
Sorting:
- Kernel ReClassEx☆64Updated last year
- PAGE_GUARD based hooking library☆50Updated 3 years ago
- Library to manipulate drivers that expose a physical memory read/write primitive.☆30Updated 2 years ago
- Allows for same-file KernelMode function execution using Encrypted addresses of Functions☆46Updated last week
- POC Hook of nt!HvcallCodeVa☆52Updated 2 years ago
- C/C++ antidebugging library for Windows☆39Updated last month
- Binary rewriter for 64-bit PE files.☆84Updated last year
- ☆26Updated 10 months ago
- ☆32Updated last year
- ☆42Updated 3 years ago
- ntoskrnl .data hooks for UM-KM communication☆51Updated last year
- x86-64 user mode emulation using Zydis☆67Updated 3 weeks ago
- Experiment with PAGE_GUARD protection to hide memory from other processes☆51Updated last year
- A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe☆72Updated 2 years ago
- unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…☆62Updated last year
- A debugger library using VEH.☆64Updated last year
- PoC kernel to usermode injection☆87Updated last year
- Runtime Hyper-V Hijacking with DDMA☆60Updated last month
- Yet another IDA Pro/Home plugin for deobfuscating stack strings☆79Updated last week
- A PoC for requesting HWIDs directly from hardware, skipping any potential hooks or OS support.☆80Updated 4 years ago
- Obfuscate calls to imports by patching in stubs☆72Updated 4 years ago
- Custom KiSystemStartup, can be used to modificate kernel before boot.☆52Updated 3 years ago
- Windows PDB parser for kernel-mode environment.☆99Updated 3 months ago
- Reverse Engineering a signed kernel driver packed and virtualized with VMProtect 3.6☆104Updated 2 years ago
- ☆35Updated 3 years ago
- ☆72Updated 3 years ago
- just proof of concept. hooking MmCopyMemory PG safe.☆76Updated last year
- Virtual and physical memory hacking library using gigabyte vulnerable driver☆71Updated 2 years ago
- based on https://github.com/secrary/Hooking-via-InstrumentationCallback☆71Updated 5 years ago
- Handling C++ & __try exceptions without the need of built-in handlers.☆72Updated 4 years ago