Broihon / ProcessInfo

Related projects ⓘ

Alternatives and complementary repositories for ProcessInfo

• Broihon / Symbol-Parser
  Small class to parse debug info from PEs, download their respective PDBs from the Microsoft Public Symbol Server and calculate RVAs of fu…
  ☆40Updated last year
• msmania / hk
  Injector with kernel power
  ☆16Updated 3 years ago
• h4xu3lyn / FuckPg
  Analysing and defeating PatchGuard universally
  ☆34Updated 4 years ago
• gigabitwize / dank
  Driver Loader/BE Bypass/Win Malware(lol)
  ☆34Updated 5 years ago
• adrianyy / memorylib
  Remote memory library in C++17.
  ☆30Updated 6 years ago
• r1cky33 / krnlmap
  simply manual map any system image
  ☆16Updated 3 years ago
• opcode86 / SysCaller
  Single header library to simplify the usage of direct syscalls. x64/x86
  ☆12Updated last year
• rbapat / KernelInjector
  Stealthy Injector that leverages a vulnerable driver and other exploits to remain undetected
  ☆36Updated 5 years ago
• Vicshann / PEProtectDrv
  Some crazy PE executables protection kernel driver
  ☆18Updated 4 years ago
• he4rtbleed / PPLL
  Protected Process Light Library
  ☆18Updated 4 years ago
• addrianyy / asmlib_x64
  x64 assembler library
  ☆32Updated 5 months ago
• 1401199262 / HookSwapContext
  ☆28Updated last year
• d35ha / xPE
  Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling
  ☆30Updated 5 years ago
• moukayz / KernelDriverDemo
  ☆23Updated 5 years ago
• ZaweSec / KasperskyHook_NewKSDriver
  ☆32Updated last year
• Broihon / StartRoutine
  A library with four different methods to execute shellcode in a process
  ☆25Updated 4 years ago
• cxxrev0to1dev / nb_obfuscator
  win32/x64 obfuscate framework
  ☆32Updated 5 years ago
• Nitr0-G / PeVisor
  A project on the Unicorn emulator to emulate the code of Pe files in windows
  ☆19Updated last month
• 1401199262 / UnsuccessfulDriver
  ☆15Updated 2 years ago
• muturikaranja / disable-threat-tracing
  Disable threat tracing from the kernel..
  ☆12Updated 2 years ago
• christianshub / process-injection-guard
  Signature scanner and API hooks to detect malicious process injection
  ☆18Updated last year
• Rat431 / ColdKernel_KUSER
  A simple kernel mode driver that hooks some values at the KUSER_SHARED_DATA structure.
  ☆25Updated 4 years ago
• kkent030315 / anyelevate
  x64 Windows privilege elevation using anycall
  ☆20Updated 3 years ago
• moccajoghurt / MemWars
  ☆47Updated 6 years ago
• NewWorldComingSoon / UnknownField
  UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.
  ☆44Updated last year
• DKingAlpha / SSDT-Index
  Ready-to-use headers for Windows Kernel SSDT indices
  ☆11Updated 4 years ago
• gmh5225 / FakeEnclave
  A poc that abuses Enclave
  ☆36Updated 2 years ago