IntelSDM / PEFromMemoryLinks
Executing EXE Files From Memory
☆11Updated 2 years ago
Alternatives and similar repositories for PEFromMemory
Users that are interested in PEFromMemory are comparing it to the libraries listed below
Sorting:
- A simple MmCopyMemory hook.☆37Updated 3 years ago
- UM-KM Communication using registry callbacks☆39Updated 5 years ago
- Allows for same-file KernelMode function execution using Encrypted addresses of Functions☆49Updated 4 months ago
- ☆43Updated 2 years ago
- Freeze target threads (external - internal ) by avoiding SuspendThread detections. Or access registers from start address.☆34Updated last year
- Virtual and physical memory hacking library using gigabyte vulnerable driver☆71Updated 2 years ago
- POC kernel driver with hidden system thread☆13Updated last year
- Register a callback from a Manually mapped kernel module☆15Updated 4 years ago
- Made by scammer so i leak for free ! have fun☆56Updated 2 years ago
- ☆16Updated 3 years ago
- Kernel<->Usermode shared memory communcation using manually mapped driver☆21Updated 4 years ago
- Bypass using kernel driver (not finish).☆20Updated 2 years ago
- ☆27Updated 2 years ago
- ☆59Updated 2 years ago
- ☆17Updated 5 years ago
- ☆51Updated 2 years ago
- PE Header (.rdata,.data,.text) obsfucation☆36Updated 3 years ago
- Proof of Concept Kernel-User Communication using System Thread.☆14Updated 2 years ago
- ☆63Updated 3 years ago
- Dumping processes using a kernel-mode driver.☆20Updated 4 years ago
- ☆36Updated 3 years ago
- A simple present scene, kernel allocation injector.☆26Updated 3 years ago
- Hiding a system thread against conventional means of detection☆41Updated 5 years ago
- communicate with kernel using a image on disk☆16Updated last year
- ☆23Updated 3 years ago
- PAGE_GUARD based hooking library☆52Updated 3 years ago
- search for a driver/dll module that has a wanted section bigger than the size of your image☆20Updated 4 years ago
- ☆48Updated 3 years ago
- 将驱动映射到会话空间☆38Updated 3 years ago
- ☆19Updated last year