A mini filter driver development framework allows you to develop minit filter driver with different features.
☆73Jun 20, 2026Updated last week
Alternatives and similar repositories for mini-filter-driver-framework
Users that are interested in mini-filter-driver-framework are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A Practical example of ELAM (Early Launch Anti-Malware)☆36Nov 12, 2021Updated 4 years ago
- DWM hooking-based screenshot tool☆36Sep 13, 2025Updated 9 months ago
- A simple POC to show how to chain multiple callbacks via tail calls to artificially construct a call stack☆109May 25, 2026Updated last month
- A small NtCreateUserProcess PoC that spawns a Command prompt.☆105Apr 11, 2026Updated 2 months ago
- This is the AV ("protection solution") used for my windows 10 rootkit main project. this includes the installer stager program, a service…☆13May 2, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A C# transparent file encryption example which was implemented with the Transparent Encryption File System Filter Driver SDK. The Transp…☆15Jun 20, 2026Updated last week
- WinDbg cheat sheet☆17May 10, 2023Updated 3 years ago
- A library that can map one IP-Port to another IP-Port.☆30Jun 11, 2019Updated 7 years ago
- Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich☆21Jun 29, 2024Updated 2 years ago
- very simple masm64 example to demonstrate how to compile MASM 64 bit using NMake/CMake☆14Aug 23, 2022Updated 3 years ago
- Helper functions for calculating the authenticode digest for a portable executable file☆21Apr 30, 2020Updated 6 years ago
- anti cheat drv open source☆19Apr 18, 2024Updated 2 years ago
- A library for working with NTFS Reparse Points☆23Sep 6, 2019Updated 6 years ago
- An example driver for Windows that shows how to set-up some basic components of the Windows Filtering Platform☆205Jul 6, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Record & prevent file deletion in kernel mode☆45Jul 22, 2020Updated 5 years ago
- EaseFilter File Security Filter Driver SDK. EaseFilter Comprehensive File Security SDK is a set of file system filter driver software dev…☆16Jun 20, 2026Updated last week
- An example of how a driver can register a handle creation callback.☆16Jun 12, 2023Updated 3 years ago
- silence file system monitoring components by hooking their minifilters☆63Jan 31, 2024Updated 2 years ago
- A File System Filter Driver for file I/O monitors, file access control, transparent file encryption.☆42Jun 20, 2026Updated last week
- An example code of CiGetCertPublisherName☆16Mar 24, 2022Updated 4 years ago
- Provides a library used to read from files packaged in the WZ format which is specifically used by the official game service.☆10Feb 14, 2020Updated 6 years ago
- LPE / RCE Exploits for various vulnerable "Bloatware" products☆88Aug 5, 2025Updated 10 months ago
- Yossi Mandil & Tomer Gill's Bachelor Degree Final Project under the BIU Cyber Center - Malware & Benign File Classification using Machin…☆10Jun 24, 2018Updated 8 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- 字符串混淆工具☆23Feb 15, 2019Updated 7 years ago
- ☆194May 1, 2023Updated 3 years ago
- A MacOS VFS isolation layer to redirect file I/O operations.☆30Jan 27, 2018Updated 8 years ago
- This repo contains EXPs about Vulnerable Windows Driver☆48May 22, 2024Updated 2 years ago
- Uses Threat-Intelligence ETW events to identify shellcode regions being hidden by fluctuating memory protections☆179May 17, 2023Updated 3 years ago
- A simple utility to mount / unmount VHD Images a lot faster than using Microsofts DiskPart utility.☆26Aug 16, 2020Updated 5 years ago
- KrabsETW provides a modern C++ wrapper and a .NET wrapper around the low-level ETW trace consumption functions.☆783Apr 14, 2026Updated 2 months ago
- ☆28Dec 29, 2021Updated 4 years ago
- ☆18Jun 30, 2017Updated 9 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A collection of useful scripts to prepare a new windows installation for use☆21Jun 18, 2024Updated 2 years ago
- A simple program to hook the current process to identify the manual syscall executions on windows☆267Nov 18, 2022Updated 3 years ago
- ☆26Apr 10, 2023Updated 3 years ago
- Playing with packets in C#☆15Aug 16, 2024Updated last year
- Virtual Trust Level (VTL 1) secure call tracing☆103Feb 12, 2026Updated 4 months ago
- BYOVD Technique Example using viragt64 driver☆83Jul 25, 2024Updated last year
- Windows hypervisor for Intel x64: defensive host hypervisor for Windows designed to mitigate kernel-level attacks including BYOVD, compat…☆263May 9, 2026Updated last month