C485 / ReturnAddressHider
Simple header only library to change return address on current stack frame.
☆23Updated 8 years ago
Related projects ⓘ
Alternatives and complementary repositories for ReturnAddressHider
- Library for using direct system calls☆35Updated 4 years ago
- Polymorphic Stub Creator☆30Updated 7 years ago
- ☆16Updated 4 years ago
- win32/x64 obfuscate framework☆32Updated 5 years ago
- Some crazy PE executables protection kernel driver☆18Updated 4 years ago
- Translates WinDbg "dt" structure dump to a C structure☆13Updated 4 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆30Updated 5 years ago
- viewing page boundaries of pages with PAGE_NOACCESS protection reveals the presence of x64dbg.☆22Updated 7 years ago
- Protected Process Light Library☆18Updated 4 years ago
- Analysing and defeating PatchGuard universally☆34Updated 4 years ago
- Shareds for kernel developement☆27Updated 10 years ago
- fork HoShiMin Avanguard☆19Updated 6 years ago
- A POC for Windows Extension Host hooking☆22Updated 5 years ago
- using gpuz to load driver☆31Updated 5 years ago
- ☆10Updated 7 years ago
- Figuring out the cause of a handle downgrade☆23Updated last year
- Data and structures regarding the research done on WdFilter☆13Updated 4 years ago
- PoC of BOOST-ed _EPROCESS.VadRoot iterating☆24Updated 10 years ago
- p2c loader(this is also the loader isolation.top used)☆14Updated 6 years ago
- NT reversal☆26Updated 6 years ago
- Windows Console Monitor☆32Updated 5 years ago
- x64 Kernel Hooks Detection☆24Updated 7 years ago
- Injector with kernel power☆16Updated 3 years ago