Abusing DDMA alongside Copy On Write for Cross Process Code Execution for a 3000$ Bug Bounty
☆101Feb 1, 2026Updated 4 months ago
Alternatives and similar repositories for CopyMyWrite
Users that are interested in CopyMyWrite are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Kernel Driver used in Rigel to do RPM and WPM☆24Feb 11, 2024Updated 2 years ago
- Misery Loader to bypass modern EDR solutions☆19Dec 20, 2024Updated last year
- Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in …☆57Dec 30, 2025Updated 5 months ago
- kASLR bypass technique on Intel CPUs.☆34May 18, 2025Updated last year
- page table manipulation to gain physical r/w☆44May 7, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- UEFI Bootkit Framework that attacks boot-time Code Integrity☆140Mar 15, 2026Updated 2 months ago
- A high-fidelity x86_64 polymorphic mutation engine focused on instruction-level fragmentation and context preservation.☆112Jan 18, 2026Updated 4 months ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated last year
- POC about how to detect windows kernel debug by pool tag.☆13Nov 29, 2023Updated 2 years ago
- VFGadget locator to facilitate Counterfeit Object-Oriented Programming (COOP) and Loop-Oriented Programming (LOP) attacks to bypass advan…☆24Mar 16, 2025Updated last year
- stack based arithmetic only virtual machine (VM) executes bytecode instructions to perform various basic arithmetic operations and manage…☆27Mar 19, 2025Updated last year
- [WIP] claude opus x86_64 disassembler/lifter/recompiler☆40Feb 12, 2026Updated 3 months ago
- "Bypassing" HVCI via donor PFN swaps to modify read-only code pages. Call chained kernel functions (kCET and SLAT support), and more.☆126Mar 16, 2026Updated 2 months ago
- My personal / private P2C Project undetected for 8- Months Straight leaked & resold so I am publishing it to piss them off.☆69Apr 23, 2026Updated last month
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Windows kernel ROP-only implant exposing R/W primitives☆53Feb 1, 2026Updated 4 months ago
- WinDbg-ext-MCP bridges your favorite LLM client (like Cursor, Claude, or VS Code) with WinDbg, enabling real-time, AI assisted kernel deb…☆106Sep 10, 2025Updated 8 months ago
- Fix VMProtect 3.xx (tested 3.0.9 to 3.5.0)☆18Feb 1, 2022Updated 4 years ago
- Usermode exploit to bypass any AC using a 0day shatter attack.☆376Nov 26, 2025Updated 6 months ago
- Patchestry is a binary patching framework built with MLIR and Ghidra.☆84Jun 2, 2026Updated last week
- Coefficient-Based Reconstruction of Arithmetic — a Mixed Boolean-Arithmetic (MBA) expression simplifier for deobfuscation☆281Updated this week
- Automatic vtable detection, inheritance analysis, and function override tracking for reverse engineering compiled C++ binaries. Supports …☆138Mar 13, 2026Updated 2 months ago
- Windows x64 DLL/Driver manual map injection on a non-present PML4E using physical memory read/writes, direct page table manipulation and …☆99Sep 28, 2025Updated 8 months ago
- Windows 11 kernel research framework demonstrating DSE bypass on Windows 11 25H2 through boot-time execution. Loads unsigned drivers by s…☆125Apr 9, 2026Updated last month
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Usermode NT Explorer - Query kernel addresses, translate virtual to physical addresses, inspect the PFN database, and more.☆86Mar 16, 2026Updated 2 months ago
- ApplyCalleeType IDA Plugin 🤙 — Reborn. Single-file port to IDA Pro 9.3 with right-click menu, live prototype editor, and full SAL/MSDN p…☆71Mar 9, 2026Updated 2 months ago
- Ryūjin Protector - Is a Intel Arch - BIN2BIN - PE Obfuscation/Protection/DRM tool☆339Nov 20, 2025Updated 6 months ago
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆81Apr 13, 2025Updated last year
- KVC enables unsigned driver loading via DSE bypass (g_CiOptions patch, skci.dll hijack, SeCiCallbacks redirection) and PP/PPL manipulatio…☆262May 28, 2026Updated last week
- Shellcode capable of bypassing EAF / IAF mitigations☆30Apr 11, 2023Updated 3 years ago
- 🔬 IDA plugin to find patched memory☆88Jun 1, 2026Updated last week
- ☆13Oct 10, 2023Updated 2 years ago
- read / write memory from a proxy process by injecting shellcode☆20Dec 23, 2025Updated 5 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Leveraging TPM2 TCG Logs (Measured Boot) to Detect UEFI Drivers and Pre-Boot Applications☆21Mar 28, 2025Updated last year
- Archive R/W into any protected process by changing the value of KTHREAD->PreviousMode☆160Jul 31, 2022Updated 3 years ago
- MOUSE MOVEMENT BYPASS VALORANT VANGUARD☆24Oct 13, 2025Updated 7 months ago
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆64Oct 19, 2024Updated last year
- Rust CLI for x86-64 PE binary obfuscation with a custom lifter☆32Apr 10, 2026Updated last month
- A stealthy anti-fingerprinting toolkit for Windows☆127Aug 5, 2025Updated 10 months ago
- ASM Bootkit that patches DSE at boot allowing to load unsigned drivers☆20Aug 24, 2025Updated 9 months ago