DarthTon / Polychaos
PE permutation library
☆269Updated last year
Alternatives and similar repositories for Polychaos:
Users that are interested in Polychaos are comparing it to the libraries listed below
- x64 usermode rootkit☆203Updated 6 years ago
- driver mapper / capcom wrapper☆219Updated 5 years ago
- C++17 PE manualmapper☆329Updated 3 years ago
- PatchGuard Research☆295Updated 6 years ago
- Open-source user-mode Anti-Anti-Debug plugin for x64dbg & cheatengine.☆198Updated 7 years ago
- windows kernelmode and usermode IAT hook☆144Updated 4 years ago
- Detecting execution of kernel memory where is not backed by any image file☆256Updated 6 years ago
- This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemo…☆588Updated 5 years ago
- Simple code to manipulate the memory of a usermode process from kernel.☆274Updated 8 years ago
- Simple VM based x86 PE (portable exectuable) protector.☆337Updated 9 years ago
- Import address table (IAT) hooking is a well documented technique for intercepting calls to imported functions.☆218Updated 6 years ago
- A modern c++ implementation of windows heavens gate☆216Updated 4 years ago
- ☆392Updated 8 years ago
- A wrapper library around native windows sytem APIs☆427Updated 4 years ago
- RootKit & Cheat Scanner - Windows☆212Updated 5 years ago
- AntiDebugging sample sources written in C++☆337Updated 6 years ago
- This DKOM exploit enables any app in usermode to access physical memory directly☆220Updated 7 years ago
- Hide Driver By MiProcessLoaderEntry☆286Updated 5 years ago
- Asynchronous Procedure Calls☆219Updated 3 years ago
- Elevate a process to be a protected process☆144Updated 5 years ago
- SimpleSvmHook is a research purpose hypervisor for Windows on AMD processors.☆373Updated 4 years ago
- Obfuscates all RTTI (Run-time type information) inside a binary☆193Updated 7 years ago
- ☆163Updated 7 years ago
- Detours with just single dependency - NTDLL☆619Updated 2 years ago
- Proof of concept implementation of in-memory PE Loader based on ReflectiveDLLInjection Technique☆151Updated 6 years ago
- A library to manipulate physical memory from usermode.☆291Updated last year
- A memory scanner plugin for x64dbg, inspired by Cheat Engine.☆281Updated 2 years ago
- Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.☆854Updated 5 years ago
- KSOCKET provides a very basic example how to make a network connections in the Windows Driver by using WSK☆491Updated 2 years ago
- Persistent IAT hooking application - based on bearparser☆251Updated 2 years ago