Anal-Repair / gigabyte_gdrv3_exploit
Rust program for interfacing with the gigabyte driver to gain access to powerful primitives such as arbitrary kernel memcpy.
☆17Updated last year
Related projects: ⓘ
- C/C++ antidebugging library for 32 and 64 bit processors☆10Updated 2 months ago
- An example of how to use Microsoft Windows Warbird technology☆24Updated last year
- XOrCryptEx lightweight C Utility/Algorithm☆11Updated 2 years ago
- Lightweight Threat Detection System - (Base)☆14Updated 5 months ago
- ☆17Updated last year
- Hooking Heavens Gate in a weekend☆13Updated 2 years ago
- PEIM (UEFI) bootkit targeting OVMF (EDK2)☆33Updated 9 months ago
- A Windows API hooking library !☆30Updated 2 years ago
- Windows Minidump loader for Ghidra☆19Updated last year
- An attempt at reversing WindowsDefender☆19Updated 5 months ago
- SoulExtraction is a windows driver library for extracting cert information in windows drivers☆20Updated last year
- Bypassing kernel patch protection runtime☆19Updated last year
- A minimalistic logger for Windows Kernel Drivers.☆20Updated 6 months ago
- Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.☆22Updated 5 years ago
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆46Updated last year
- ☆10Updated this week
- A packed & protected Module Loader and more, for 64-bit Windows☆28Updated 3 years ago
- Fake Timestamps of Driver Certificates while keeping validity.☆16Updated 3 years ago
- EDR PoC WIP LLC☆10Updated 7 months ago
- A driver to implement IOCTL hooking☆23Updated 2 years ago
- Register a callback from a Manually mapped kernel module☆11Updated 2 years ago
- Some drivers I've written while solving exercises from Practical Reverse Engineering☆13Updated 2 years ago
- ☆19Updated 7 months ago
- Windows kernel driver template for cmkr and llvm-msvc.☆32Updated 9 months ago
- ☆29Updated 2 years ago
- Single header library to simplify the usage of direct syscalls. x64/x86☆12Updated last year
- Hardware Spoofing & VirtualBox-Hardening x64 Bootkit☆14Updated last year
- How Meltdown and Spectre haunt Anti-Cheat: DVRT details☆18Updated last month
- FastSymApi - A Fast API PDB Symbol Cache Server that efficiently caches and compresses PDBs on disk for quick and repeated retrieval.☆17Updated this week
- ☆12Updated 2 years ago