Abusing DDMA alongside Copy On Write for Cross Process Code Execution for a 3000$ Bug Bounty
☆88Feb 1, 2026Updated 3 weeks ago
Alternatives and similar repositories for CopyMyWrite
Users that are interested in CopyMyWrite are comparing it to the libraries listed below
Sorting:
- Kernel Driver used in Rigel to do RPM and WPM☆24Feb 11, 2024Updated 2 years ago
- [WIP] claude opus x86_64 disassembler/lifter/recompiler☆34Feb 12, 2026Updated 2 weeks ago
- Windows kernel ROP-only implant exposing R/W primitives☆39Feb 1, 2026Updated 3 weeks ago
- "Bypassing" HVCI via donor PFN swaps to modify read-only code pages. Call chained kernel functions (kCET and SLAT support), modify read-o…☆87Feb 14, 2026Updated 2 weeks ago
- UEFI Bootkit Framework that attacks boot-time Code Integrity☆117Dec 15, 2025Updated 2 months ago
- Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in …☆54Dec 30, 2025Updated last month
- My personal / private P2C Project undetected for 8- Months Straight leaked & resold so I am publishing it to piss them off.☆67Sep 27, 2025Updated 5 months ago
- A high-fidelity x86_64 polymorphic mutation engine focused on instruction-level fragmentation and context preservation.☆110Jan 18, 2026Updated last month
- stack based arithmetic only virtual machine (VM) executes bytecode instructions to perform various basic arithmetic operations and manage…☆27Mar 19, 2025Updated 11 months ago
- Usermode NT Explorer - Query kernel addresses, translate virtual to physical addresses, inspect the PFN database, and more.☆72Jan 27, 2026Updated last month
- Windows 11 kernel research framework demonstrating DSE bypass on Windows 11 25H2 through boot-time execution. Loads unsigned drivers by s…☆82Dec 22, 2025Updated 2 months ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated 10 months ago
- Shellcode capable of bypassing EAF / IAF mitigations☆28Apr 11, 2023Updated 2 years ago
- kASLR bypass technique on Intel CPUs.☆32May 18, 2025Updated 9 months ago
- Leveraging TPM2 TCG Logs (Measured Boot) to Detect UEFI Drivers and Pre-Boot Applications☆22Mar 28, 2025Updated 10 months ago
- ☆17Jun 16, 2025Updated 8 months ago
- ☆75Updated this week
- page table manipulation to gain physical r/w☆43May 7, 2024Updated last year
- Windows x64 DLL/Driver manual map injection on a non-present PML4E using physical memory read/writes, direct page table manipulation and …☆85Sep 28, 2025Updated 4 months ago
- ☆17Sep 25, 2024Updated last year
- x86-64 pe binary obfuscator☆27Jan 11, 2026Updated last month
- Usermode exploit to bypass any AC using a 0day shatter attack.☆258Nov 26, 2025Updated 3 months ago
- ☆13Oct 10, 2023Updated 2 years ago
- Misery Loader to bypass modern EDR solutions☆18Dec 20, 2024Updated last year
- Ryūjin Protector - Is a Intel Arch - BIN2BIN - PE Obfuscation/Protection/DRM tool☆303Nov 20, 2025Updated 3 months ago
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆61Oct 19, 2024Updated last year
- Archive R/W into any protected process by changing the value of KTHREAD->PreviousMode☆163Jul 31, 2022Updated 3 years ago
- A stealthy anti-fingerprinting toolkit for Windows☆96Aug 5, 2025Updated 6 months ago
- This is my EAC Bypass (Setup) Driver that offers an undetected communication and callback handler/hooking system through IOCTL.☆170Sep 27, 2025Updated 5 months ago
- ☆17May 7, 2025Updated 9 months ago
- Fix VMProtect 3.xx (tested 3.0.9 to 3.5.0)☆18Feb 1, 2022Updated 4 years ago
- A custom implementation of the Nanomites protection technology for Windows executables (x86 and x64) originally introduced by Silicon Rea…☆33Jan 11, 2026Updated last month
- A minimalistic way to spoof return addresses without using exceptions☆17Jul 26, 2022Updated 3 years ago
- Convert Microsoft Defender Antivirus Signatures (VDM) into a SQL DB☆24Jun 27, 2025Updated 8 months ago
- Intel 64/Windows low-level experiments☆63Aug 25, 2025Updated 6 months ago
- 🛡️ Open-source binary protection toolkit for Windows PE. Nanomite, VM protection, anti-debug, and more.☆57Feb 8, 2026Updated 2 weeks ago
- VFGadget locator to facilitate Counterfeit Object-Oriented Programming (COOP) and Loop-Oriented Programming (LOP) attacks to bypass advan…☆23Mar 16, 2025Updated 11 months ago
- Zyrox: LLVM based, compile-time obfuscator plugin.☆88Feb 18, 2026Updated last week
- a minimalistic windows hypervisor for amd processors☆138Jun 30, 2022Updated 3 years ago