Broihon / ProcessInfo
A class to gather information about a process, its threads and modules.
☆24Updated 5 years ago
Alternatives and similar repositories for ProcessInfo:
Users that are interested in ProcessInfo are comparing it to the libraries listed below
- Remote memory library in C++17.☆31Updated 6 years ago
- Small class to parse debug info from PEs, download their respective PDBs from the Microsoft Public Symbol Server and calculate RVAs of fu…☆43Updated last year
- Abusing RtlAdjustPrivilege and NtSetInformationProcess to cause a BSOD from usermode☆17Updated 2 years ago
- Injector with kernel power☆16Updated 4 years ago
- x64 assembler library☆31Updated 9 months ago
- Fake Timestamps of Driver Certificates while keeping validity.☆16Updated 3 years ago
- Small class to help perform syscalls.☆21Updated last year
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆32Updated 5 years ago
- A packed & protected Module Loader and more, for 64-bit Windows☆28Updated 4 years ago
- A small library to extend the functionality of GetModuleHandle and GetProcAddress to other processes☆17Updated 5 years ago
- ☆48Updated 6 years ago
- A library with four different methods to execute shellcode in a process☆24Updated 4 years ago
- Static library and headers for linking your software with ntdll.dll☆32Updated 5 years ago
- Analysing and defeating PatchGuard universally☆34Updated 4 years ago
- driver interface with dll-injection capabilities☆28Updated 4 years ago
- Example of hijacking system calls via function pointer tables☆32Updated 3 years ago
- Use NtSetInformationThread(ThreadBreakOnTermination) for anti-debugging☆12Updated 5 years ago
- Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.☆29Updated 2 years ago
- Protected Process Light Library☆18Updated 4 years ago
- viewing page boundaries of pages with PAGE_NOACCESS protection reveals the presence of x64dbg.☆23Updated 8 years ago
- (DEPRECATED) A simple anti-anti debug library for Windows☆29Updated 4 years ago
- Signature scanner and API hooks to detect malicious process injection☆27Updated 2 years ago
- A simple kernel mode driver that hooks some values at the KUSER_SHARED_DATA structure.☆26Updated 5 years ago
- P2C Loader based on blackbone, used by isolation.top and others.☆14Updated 7 years ago
- Simplifies the Windows Kernel APIs by making the existing function easier to use, and extends them by creating functions that could possi…☆26Updated 7 months ago
- Driver Loader/BE Bypass/Win Malware(lol)☆34Updated 5 years ago
- A reflexive driver loader to bypass Windows DSE (featuring a custom PE loader)☆42Updated 6 years ago
- C++ console logging library (fmt wrapper)☆16Updated 5 years ago
- Debug Print viewer (user and kernel)☆65Updated last year
- Code injection by hijacking threads in Windows 32-bit applications☆43Updated 6 years ago