Ahora57 / UnabomberLinks
Improved VMP Idea(detect anti-anti-debug tools by bug)
☆45Updated 2 years ago
Alternatives and similar repositories for Unabomber
Users that are interested in Unabomber are comparing it to the libraries listed below
Sorting:
- Kernel ReClassEx☆63Updated last year
- C/C++ antidebugging library for Windows☆29Updated 3 weeks ago
- POC Hook of nt!HvcallCodeVa☆52Updated 2 years ago
- PAGE_GUARD based hooking library☆47Updated 3 years ago
- unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…☆61Updated last year
- A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe☆72Updated last year
- A devirtualization engine for Themida.☆100Updated last year
- Allows for same-file KernelMode function execution using Encrypted addresses of Functions☆42Updated 9 months ago
- A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)☆74Updated last year
- Experiment with PAGE_GUARD protection to hide memory from other processes☆47Updated last year
- ☆24Updated 8 months ago
- Symbolic Execution based on lifting amd64 to z3☆28Updated last year
- Library to manipulate drivers that expose a physical memory read/write primitive.☆29Updated last year
- PoC kernel to usermode injection☆85Updated last year
- Handling C++ & __try exceptions without the need of built-in handlers.☆71Updated 3 years ago
- A lightweight BattlEye emulator of the launcher☆61Updated 2 years ago
- Binary rewriter for 64-bit PE files.☆83Updated last year
- Windows PDB parser for kernel-mode environment.☆99Updated last month
- ☆45Updated last year
- ☆46Updated 3 years ago
- Cheat for my own game SecureGame which uses a bootkit to hyperjack Hyper-V in order to access VBS enclave's memory☆64Updated 7 months ago
- driver that communicates using a shared section☆66Updated 4 months ago
- just proof of concept. hooking MmCopyMemory PG safe.☆77Updated last year
- ntoskrnl .data hooks for UM-KM communication☆50Updated last year
- Virtual and physical memory hacking library using gigabyte vulnerable driver☆71Updated 2 years ago
- ☆31Updated 10 months ago
- A simple ida python script to find .data ptr☆51Updated 2 years ago
- Compileable POC of namazso's x64 return address spoofer.☆51Updated 5 years ago
- Freeze target threads (external - internal ) by avoiding SuspendThread detections. Or access registers from start address.☆33Updated last year
- A PoC for requesting HWIDs directly from hardware, skipping any potential hooks or OS support.☆80Updated 4 years ago