a dkom rootkit that targets windows x64 systems. the rootkit hooks and edits criticl memory sections in order to hide different resources.
☆18Jul 5, 2023Updated 2 years ago
Alternatives and similar repositories for Kernelious-Rootkit
Users that are interested in Kernelious-Rootkit are comparing it to the libraries listed below
Sorting:
- ☆17Oct 31, 2022Updated 3 years ago
- Activate Windows & Office 🔑☆13Jun 15, 2024Updated last year
- Learn Winapi in this Repo with examples, to understand its abstraction in reverse engineering for Windows.☆11Aug 8, 2022Updated 3 years ago
- 🐞 A simple Windows x86 debugging framework written in C++20 that supports software breakpoints and hardware breakpoints. It can be used …☆13Mar 30, 2025Updated 11 months ago
- Windows X64 mode use seh in manual mapped dll or manual mapped sys☆80Oct 10, 2022Updated 3 years ago
- A VMBR (Virtual-Machine Based Rootkit) which runs a guest OS and sends the attacker its data☆28Apr 27, 2024Updated last year
- The driver STL library used by myself☆13Oct 19, 2022Updated 3 years ago
- ☆17Apr 18, 2023Updated 2 years ago
- ☆26Sep 17, 2017Updated 8 years ago
- A C library for creating and using TCP/IP packets with raw network sockets☆72Dec 20, 2024Updated last year
- A C++ syscall ID extractor for Windows. Developed, debugged and tested on 20H2.☆21May 25, 2021Updated 4 years ago
- Reverse Socks5 proxy for windows☆16Oct 13, 2022Updated 3 years ago
- ☆23Jul 24, 2023Updated 2 years ago
- ☆53Dec 21, 2022Updated 3 years ago
- ATHERCRC32 Provide developers with a complete framework for using CRC32 in functions/classes in memory, and protecting your software agai…☆15Jan 29, 2021Updated 5 years ago
- Simple memory obfuscator.☆24Jul 21, 2022Updated 3 years ago
- A driver to implement IOCTL hooking☆27Mar 17, 2022Updated 3 years ago
- first commit☆64Oct 29, 2020Updated 5 years ago
- This is a POC for loading shared object directly from memory without accessing the actual Linux file system.☆22Jan 2, 2021Updated 5 years ago
- simple driver to read and write☆18Apr 13, 2025Updated 10 months ago
- 扫描以及恢复 r3hook 类☆10Aug 29, 2021Updated 4 years ago
- NASM listing to shellcode converter☆14May 6, 2018Updated 7 years ago
- A malicious KeePass plugin to exfiltrate the master key.☆15Oct 25, 2021Updated 4 years ago
- ☆47Feb 3, 2025Updated last year
- ☆27Jan 4, 2024Updated 2 years ago
- Injects position-dependent code into a code cave in an executable file, and applies relocations.☆26May 12, 2023Updated 2 years ago
- A simple example how to decrypt kernel debugger data block☆32Feb 8, 2021Updated 5 years ago
- a net filter drive developed by wfp and msddk☆23Jul 15, 2019Updated 6 years ago
- A POC for Windows Extension Host hooking☆24Jul 13, 2019Updated 6 years ago
- win10 pgContext dynamic dump (btc version)☆110Jan 15, 2020Updated 6 years ago
- ☆34Aug 7, 2023Updated 2 years ago
- ☆28Dec 16, 2023Updated 2 years ago
- Windows Kernel API wrapper with simplified functions and enterprise driver extensions.☆33Jul 8, 2025Updated 7 months ago
- Driver demonstrating how to register a DPC to asynchronously wait on an object☆50Jan 15, 2021Updated 5 years ago
- Implement a Stack VM Interpreter with a Register Window☆11Jan 2, 2024Updated 2 years ago
- Inject dll to process in driver☆10Aug 27, 2024Updated last year
- Windows 32/64-bit Include files and Import Libraries☆16May 26, 2022Updated 3 years ago
- Neo-reGeorg is a project that seeks to aggressively refactor reGeorg☆10Dec 26, 2022Updated 3 years ago
- ☆11Jun 4, 2019Updated 6 years ago