Deputation / syscall_extractorLinks
A C++ syscall ID extractor for Windows. Developed, debugged and tested on 20H2.
☆21Updated 4 years ago
Alternatives and similar repositories for syscall_extractor
Users that are interested in syscall_extractor are comparing it to the libraries listed below
Sorting:
- Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address☆24Updated 3 years ago
- Analysing and defeating PatchGuard universally☆35Updated 4 years ago
- Some crazy PE executables protection kernel driver☆19Updated 5 years ago
- Stealthy Injector that leverages a vulnerable driver and other exploits to remain undetected☆36Updated 6 years ago
- ☆23Updated 2 years ago
- A library for intel VT-x hypervisor functionality supporting EPT shadowing.☆51Updated 4 years ago
- x64 assembler library☆31Updated last year
- Example of hijacking system calls via function pointer tables☆31Updated 4 years ago
- R3劫持所有异常☆15Updated 4 years ago
- Abusing RtlAdjustPrivilege and NtSetInformationProcess to cause a BSOD from usermode☆19Updated 3 years ago
- ☆15Updated 2 years ago
- ☆24Updated 6 years ago
- A poc that abuses Enclave☆39Updated 3 years ago
- ☆14Updated 12 years ago
- Protected Process Light Library☆18Updated 5 years ago
- ☆46Updated 6 years ago
- An example code of CiGetCertPublisherName☆16Updated 3 years ago
- Hijack NotifyRoutine for a kernelmode thread☆42Updated 3 years ago
- UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.☆45Updated 2 years ago
- Injector with kernel power☆16Updated 4 years ago
- neat way to detect memory read using nt layer function.☆14Updated 2 years ago
- ☆37Updated 4 years ago
- Translates WinDbg "dt" structure dump to a C structure☆13Updated 5 years ago
- Open Anti Cheat☆27Updated 3 years ago
- a demo for x86/x64's paging memory management learning, convert a virtual address from ring3 to physical address in ring0☆19Updated 8 years ago
- collection of code snippets,windbg,python scripts and resources☆14Updated 3 years ago
- Bypassing kernel patch protection runtime☆21Updated 2 years ago
- Basic utilities for executing, reading and writing 64-bit data in a 32-bit WoW64 process☆17Updated 3 years ago
- Some drivers I've written while solving exercises from Practical Reverse Engineering☆15Updated 3 years ago
- What makes it page☆17Updated 3 years ago