DeDf / WProtectLinks
☆40Updated 5 years ago
Alternatives and similar repositories for WProtect
Users that are interested in WProtect are comparing it to the libraries listed below
Sorting:
- Demo List cm/ps/ob/minifilter callback And Patch/Bypass it☆29Updated 7 years ago
- fork HoShiMin Avanguard☆20Updated 6 years ago
- createfile☆48Updated 9 years ago
- This is a VmProtect integrated debugger, that will essentially allow you to disasm and debug vmp partially virtualized functions at the v…☆46Updated 8 years ago
- x64 Kernel Hooks Detection☆24Updated 8 years ago
- 内核级ARK工具。☆59Updated 8 years ago
- ☆35Updated 9 years ago
- An ark tool's driver☆40Updated 8 years ago
- ☆23Updated 7 years ago
- enable libemu run pe file and add some good modify☆14Updated 6 years ago
- ☆27Updated 6 years ago
- Map memory to user space and manipulate user memory, using capmon☆23Updated 6 years ago
- map driver to memory☆26Updated 6 years ago
- 管道监视器,类似于spyxx之类的东西,一般用于监视目标进程的系统调用.关键词:detours+piep☆23Updated 11 years ago
- 大表哥的Syscall-Monitor☆34Updated 5 years ago
- Hook IDT vector 0xb2 to detect SCI in 64bit windows.☆34Updated 2 years ago
- Sysark全称system anti-rootkit,是我学习内核写的工具(2013年的代码,后续不会再更新),里面基本上所有的功能都是用内核实现的。这里只是实现了反rootkit部分功能,�作为工具的话,本人觉得还欠完善,但作为学习,或有人需要。目前针对的是XP SP2,…☆27Updated 7 years ago
- You don't need install any wdk for development kernel driver☆24Updated 6 years ago
- ☆32Updated 6 years ago
- ☆33Updated 4 years ago
- ☆36Updated 9 years ago
- For Example. See Miro's Blog☆30Updated 2 years ago
- ☆29Updated 9 years ago
- 粗暴地枚举管理内核的WFP对象。 Manage kernel WFPs in a brutal way.☆27Updated 7 years ago
- PoC of BOOST-ed _EPROCESS.VadRoot iterating☆25Updated 11 years ago
- windows inlinehook R3 R0☆11Updated 7 years ago
- Basic Injector running on x64 machines that is able to load into x64 AND x86 processes☆21Updated 6 years ago
- ☆28Updated 4 years ago
- 一些研究☆14Updated 5 years ago
- Kinject - kernel dll injector, currently available in x86 version, will be updated to x64 soon.☆32Updated 10 years ago