Alternatives and similar repositories for PushPin:

Users that are interested in PushPin are comparing it to the libraries listed below

• not-wlan / driver-hijack
  ☆153Updated 5 years ago
• AdamOron / PatchGuardBypass
  Bypassing PatchGuard on modern x64 systems
  ☆252Updated last year
• Cr4sh / pico_dma
  Autonomous pre-boot DMA attack hardware implant for M.2 slot based on PicoEVB development board
  ☆73Updated last year
• secrary / Hooking-via-InstrumentationCallback
  codes for my blog post: https://secrary.com/Random/InstrumentationCallback/
  ☆172Updated 7 years ago
• hfiref0x / Stryker
  Multi-purpose proof-of-concept tool based on CPU-Z CVE-2017-15303
  ☆108Updated 6 years ago
• kkent030315 / NoPatchGuardCallback
  x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code
  ☆201Updated 3 years ago
• w1u0u1 / kinject
  Kernel shellcode injector
  ☆143Updated 3 years ago
• gmh5225 / CallMeWin32kDriver
  Load your driver like win32k.sys
  ☆252Updated 2 years ago
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆243Updated 2 years ago
• kkent030315 / PageTableInjection
  Code Injection, Inject malicious payload via pagetables pml4.
  ☆228Updated 3 years ago
• namazso / physmem_drivers
  A collection of various vulnerable (mostly physical memory exposing) drivers.
  ☆347Updated 2 years ago
• VollRagm / PTView
  Browse Page Tables on Windows (Page Table Viewer)
  ☆193Updated 2 years ago
• Deputation / hygieia
  Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.
  ☆139Updated 3 years ago
• kkent030315 / NtSymbol
  Resolve DOS MZ executable symbols at runtime
  ☆96Updated 3 years ago
• VollRagm / lpmapper
  A mapper that maps shellcode into loaded large page drivers
  ☆252Updated 2 years ago
• kkent030315 / MsIoExploit
  Exploit MsIo vulnerable driver
  ☆92Updated 3 years ago
• kkent030315 / anycall
  x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration
  ☆265Updated 2 years ago
• zouxianyu / KernelHiddenExecute
  Hide codes/data in the kernel address space.
  ☆188Updated 3 years ago
• ufrisk / LeechCore-plugins
  Plugins related to LeechCore
  ☆34Updated last month
• DownWithUp / DynamicKernelShellcode
  An example of how x64 kernel shellcode can dynamically find and use APIs
  ☆104Updated 4 years ago
• hzqst / FuckCertVerifyTimeValidity
  This tiny project prevents the signtool from verifing cert time validity and let you sign your bin with outdated cert without changing sy…
  ☆228Updated 6 years ago
• fengjixuchui / gdrv-loader
  Kernel driver loader using vulnerable gigabyte driver (https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vu…
  ☆233Updated 3 years ago
• adrianyy / KeInject
  Kernel LdrLoadDll injector
  ☆258Updated 6 years ago
• LloydLabs / dearg-thread-ipc-stealth
  A novel technique to communicate between threads using the standard ETHREAD structure
  ☆110Updated 3 years ago
• zer0condition / Demystifying-PatchGuard
  Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…
  ☆113Updated last year
• notscimmy / pplib
  Elevate a process to be a protected process
  ☆144Updated 5 years ago
• pathtofile / PPLRunner
  Run Processes as PPL with ELAM
  ☆153Updated 2 years ago
• utoni / PastDSE
  DSE bypass using a leaked cert and adjusting the current clock.
  ☆145Updated 2 years ago
• can1357 / physical_mem_controller
  A library to read physical memory and system-wide virtual memory.
  ☆125Updated 6 years ago
• Flerov / TS-Changer
  TS-Changer - Forces the machine in/out of TestSigning Mode at runtime.
  ☆65Updated last year