Research of modifying exported function names at runtime (C/C++, Windows)
☆18May 28, 2024Updated last year
Alternatives and similar repositories for ModifyExports
Users that are interested in ModifyExports are comparing it to the libraries listed below
Sorting:
- Manually perform syscalls without going through any external API or DLL.☆19Apr 19, 2023Updated 2 years ago
- Experiment to use sections as User/Kernelmode comm vector☆22Apr 7, 2023Updated 2 years ago
- ☆28Dec 20, 2025Updated 2 months ago
- ☆10Dec 28, 2023Updated 2 years ago
- Poshito is a Windows C2 over Telegram☆21Oct 30, 2024Updated last year
- A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing…☆14Nov 8, 2020Updated 5 years ago
- it's a driver injector or driver loader header lib(Windows)☆12Aug 5, 2023Updated 2 years ago
- spoof return address☆79Apr 28, 2023Updated 2 years ago
- Stub for polymorphic code☆11Mar 18, 2023Updated 2 years ago
- A python polymorphic engine for C programs☆11Dec 8, 2023Updated 2 years ago
- Communicate from ring-0 to ring-3 using NamedPipes.☆10Feb 22, 2023Updated 3 years ago
- valorant external cheat , aimbot and wallhacker☆11Jun 29, 2023Updated 2 years ago
- Repository of different kernel drivers written while studying Windows NT Driver development☆12Apr 14, 2024Updated last year
- A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and re…☆32Aug 23, 2023Updated 2 years ago
- Dynamically generated obfuscated jumps and/or function calls☆38Apr 19, 2023Updated 2 years ago
- Walks through the 4-level paging structures in Windows x64☆13Feb 12, 2023Updated 3 years ago
- Reimplementation of the KExecDD DSE bypass technique.☆58Sep 7, 2024Updated last year
- A process injection technique using only thread context manipulation☆41Dec 18, 2023Updated 2 years ago
- Tutorial covering how to discover DLLs for Hijacking and how to create proxy DLLS using Microsoft Teams as an example☆16Apr 7, 2021Updated 4 years ago
- Windbg extension port for rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.☆13Sep 8, 2023Updated 2 years ago
- Use NtSetInformationThread(ThreadBreakOnTermination) for anti-debugging☆15Sep 21, 2019Updated 6 years ago
- Learnings about windows Internals☆99Nov 10, 2023Updated 2 years ago
- Resources from my journey into Windows binary exploitation☆24Jan 14, 2019Updated 7 years ago
- ☆13Aug 24, 2022Updated 3 years ago
- ☆60Dec 15, 2023Updated 2 years ago
- ☆25Dec 2, 2022Updated 3 years ago
- ☆17Dec 18, 2022Updated 3 years ago
- Process Ghosting is a technique in which a process is created from a delete pending file. This means the created process is not backed by…☆16May 6, 2024Updated last year
- windows kernel pagehook☆41Oct 30, 2022Updated 3 years ago
- Utilizing hardware breakpoints to evade monitoring by Endpoint Detection and Response platforms☆135Dec 20, 2022Updated 3 years ago
- Reverse engineering utilities library written in meta-modern c++☆52Jun 3, 2023Updated 2 years ago
- ☆46Feb 2, 2025Updated last year
- A C++ syscall ID extractor for Windows. Developed, debugged and tested on 20H2.☆21May 25, 2021Updated 4 years ago
- ☆16Jun 20, 2022Updated 3 years ago
- ☆21Jul 28, 2020Updated 5 years ago
- meme hwid spoofer driver. If you need an undetected HWID spoofer use Cheato Spoofer @ https://chea.to☆47Nov 23, 2024Updated last year
- ☆43Apr 18, 2023Updated 2 years ago
- Execute anything in a legit memory region by attacking a windows driver☆20Aug 20, 2023Updated 2 years ago
- read / write memory from a proxy process by injecting shellcode☆20Dec 23, 2025Updated 2 months ago