BradDorney / Patcher
Lightweight C++11 library with a tidy API, built using Capstone, to facilitate creating and tracking function-level and instruction-level hooks, or other arbitrary memory patches.
โ38Updated 2 years ago
Alternatives and similar repositories for Patcher:
Users that are interested in Patcher are comparing it to the libraries listed below
- Personal curation of Clang/LLVM patches.โ13Updated 4 years ago
- A common set of helpers used across VTIL toolchain. Moved into -->โ20Updated 4 years ago
- ๐งถ The Win32 usermode threading library with UMS/fibers/threads supportโ30Updated 5 years ago
- Figuring out the cause of a handle downgradeโ24Updated 2 years ago
- .lib file for linking against the NT CRTโ18Updated 3 years ago
- Dump PDB Symbols including support for Bochs Debugging Format (with wine support)โ15Updated last year
- Basic utilities for executing, reading and writing 64-bit data in a 32-bit WoW64 processโ17Updated 2 years ago
- x64 assembler libraryโ31Updated 10 months ago
- Library for using direct system callsโ35Updated 2 months ago
- Very tiny and selective implementation of STL for Windows NT kernel mode driversโ18Updated 3 years ago
- Fetch PDB symbols directly from Microsoft's symbol serversโ41Updated 3 years ago
- Allows you to parse all messages sent to DbgPrint without any process interaction.โ32Updated 5 years ago
- Just an example of a well-known technique to detect memory tampering via Windows Working Sets.โ16Updated 3 years ago
- The kernel mode Standard Template Library Templateโ18Updated 5 years ago
- Ready-to-use headers for Windows Kernel SSDT indicesโ11Updated 5 years ago
- Lightweight x86-64 disassembling libraryโ41Updated 2 years ago
- Analysing and defeating PatchGuard universallyโ34Updated 4 years ago
- An API Monitor based on Instrumentationโ43Updated 7 years ago
- Static library and headers for linking your software with ntdll.dllโ32Updated 5 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structureโ35Updated 9 months ago
- Detects if a Kernel mode debugger is active by reading the value of KUSER_SHARED_DATA.KdDebuggerEnabled. It is a high level and portable โฆโ23Updated 7 years ago
- MouHidInputHook enables users to filter, modify, and inject mouse input data packets into the input data stream of HID USB mouse devices โฆโ10Updated 5 years ago
- A stack and register based virtual machine which can compile and execute arbitrary code in runtimeโ44Updated last month
- โ30Updated 6 years ago
- map driver to memoryโ25Updated 6 years ago
- Phantom.Code extension providing Just-In-Time asm x64 compilation based on LLVMโ8Updated 2 years ago
- HAXM hypervisor clientโ17Updated 6 years ago
- Native API header files for the Process Hacker project (nightly).โ26Updated this week
- A driver that supports communication between a Windows guest and HyperWinโ15Updated 4 years ago
- The updated PE file manipulation library from RetDec project.โ20Updated last year