BerkanYildiz / EasyNT
Simplifies the Windows Kernel APIs by making the existing function easier to use, and extends them by creating functions that could possibly be needed in your enterprise-type drivers and filters.
☆26Updated 5 months ago
Alternatives and similar repositories for EasyNT:
Users that are interested in EasyNT are comparing it to the libraries listed below
- Logging library for kernel drivers written for the Windows NT operating system.☆19Updated 7 months ago
- Injector with kernel power☆16Updated 4 years ago
- Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.☆28Updated 2 years ago
- Two PoC of accessing process virtual memory via NT Kernel☆23Updated 3 years ago
- An example code of CiGetCertPublisherName☆14Updated 2 years ago
- Analysing and defeating PatchGuard universally☆34Updated 4 years ago
- Example of hijacking system calls via function pointer tables☆32Updated 3 years ago
- ☆26Updated last year
- Ready-to-use headers for Windows Kernel SSDT indices☆11Updated 4 years ago
- ☆23Updated last year
- Small class to parse debug info from PEs, download their respective PDBs from the Microsoft Public Symbol Server and calculate RVAs of fu…☆42Updated last year
- detect hypervisor with Nmi Callback☆34Updated 2 years ago
- Function hooks in Windows NT Kernel☆21Updated 4 years ago
- A poc that abuses Enclave☆36Updated 2 years ago
- simply manual map any system image☆16Updated 3 years ago
- A slightly safer io access library☆12Updated 3 years ago
- ☆32Updated last year
- Disable threat tracing from the kernel..☆12Updated 2 years ago
- A project on the Unicorn emulator to emulate the code of Pe files in windows☆21Updated 4 months ago
- ☆15Updated 4 years ago
- A Simple Example☆20Updated 6 years ago
- ☆18Updated 2 years ago
- Manually Mapped Windows Kernel Driver + Usermode API for Arbitrary R/W to UM process via a UM thread trapped in kernel, synchronized with…☆14Updated 4 years ago
- a driver to enumerate registered pnp callbacks for a particular interface class based on reversal of IoRegisterPlugPlayNotification☆11Updated 10 months ago
- Translates WinDbg "dt" structure dump to a C structure☆13Updated 4 years ago
- NT reversal☆26Updated 6 years ago
- Detour library (x64 and x86 compatible)☆12Updated 4 years ago
- Single header library to simplify the usage of direct syscalls. x64/x86☆12Updated last year