Alternatives and similar repositories for APC-injection-x86-x64

Users that are interested in APC-injection-x86-x64 are comparing it to the libraries listed below

• DownWithUp / ALPC-Example
  An example of a client and server using Windows' ALPC functions to send and receive data.
  ☆109Updated 10 months ago
• fIappy / infhook19041
  ☆125Updated 5 years ago
• cs1ime / DICHook
  Hook NtDeviceIoControlFile with PatchGuard
  ☆107Updated 3 years ago
• huoji120 / MakeInfinityHookGreatAgain
  让Etwhook再次伟大! Make InfinityHook Great Again!
  ☆146Updated 4 years ago
• MiroKaku / Nt-Modules
  Collect different versions of Crucial modules.
  ☆143Updated last year
• FaEryICE / MemScanner
  Analyze Windows x64 Kernel Memory Layout
  ☆125Updated 5 years ago
• DragonQuestHero / WindowsSyscallsEx
  Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查
  ☆96Updated 2 years ago
• zhuhuibeishadiao / PathModification
  Process path modification x64
  ☆59Updated 7 years ago
• huoji120 / CowInjecter
  滥用cow机制进行全局注入
  ☆98Updated 4 years ago
• fIappy / InfinityHook
  Hook system calls, context switches, page faults and more.
  ☆33Updated 6 years ago
• rbmm / INJECT
  D
  ☆43Updated 4 years ago
• Sqdwr / HideDriver
  之前那份是7600的，每次编译搞得好麻烦。更新一个VS2017可以直接编译的。
  ☆151Updated 6 years ago
• Jhinxs / ntoskrnl
  收集常用windows版本内核文件
  ☆34Updated 2 years ago
• qq1045551070 / VtToMe
  之前学习X64VT写的代码，很多坑，但是大体的逻辑还是完整的。现发出来给更多想学VT的人参考...
  ☆71Updated 4 years ago
• Oxygen1a1 / DrvMon
  a monitoring windows driver calls kernel api tools
  ☆120Updated last year
• zzhouhe / PG1903
  ☆116Updated 6 years ago
• MapleSwan / PageTableHook
  ☆144Updated 2 years ago
• secrary / Hooking-via-InstrumentationCallback
  codes for my blog post: https://secrary.com/Random/InstrumentationCallback/
  ☆180Updated 8 years ago
• Rhydon1337 / windows-kernel-file-delete
  Force a file delete using a windows kernel driver
  ☆71Updated 3 years ago
• dennisbabkin / InjectAll
  Tutorial & a blog post that demonstrate how to code a Windows driver to inject a custom DLL into all running processes. I coded it from s…
  ☆139Updated 4 years ago
• IcEy-999 / Ntoskrnl_Viewer
  可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。
  ☆109Updated 3 years ago
• MiroKaku / WDKExt
  Windows Driver Kit Extesion Header (Undoc)
  ☆135Updated 4 years ago
• NewWorldComingSoon / llvm-msvc-build
  This project migrated to https://github.com/backengineering/llvm-msvc
  ☆143Updated 2 years ago
• 0ffffffffh / system_call_hook_win10_1903
  This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness
  ☆53Updated 6 years ago
• 9176324 / Daat
  a simple intel vt code both support x86 & x64. PatchGuard monitor.
  ☆76Updated 4 years ago
• ilovecsad / veh_hide_memory
  ☆69Updated 3 years ago
• zouxianyu / PhysicalMemoryRW
  the basic version of the ring0 physical memory read/write tool
  ☆90Updated 6 years ago
• not-wlan / instrumentation-callbacks
  based on https://github.com/secrary/Hooking-via-InstrumentationCallback
  ☆72Updated 6 years ago
• Ido-Moshe-Github / CiDllDemo
  Use ci.dll API for validating Authenticode signature of files
  ☆164Updated 3 years ago
• A-Normal-User / NtSocket_NtClient_NtServer
  Using NtCreateFile and NtDeviceIoControlFile to realize the function of winsock（利用NtCreateFile和NtDeviceIoControlFile 实现winsock的功能）
  ☆114Updated 3 years ago