Microwave89 / drvtricksLinks
drvtriks kernel driver for Windows 7 SP1 and 8.1 x64, that tricks around in your system.
☆33Updated 7 years ago
Alternatives and similar repositories for drvtricks
Users that are interested in drvtricks are comparing it to the libraries listed below
Sorting:
- User-mode hook bypassing method☆33Updated 9 years ago
- Helper utility for debugging windows PE/PE+ loader.☆52Updated 10 years ago
- Polymorphic Stub Creator☆34Updated 8 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆32Updated 8 years ago
- Reflective DLL Injection style process infector☆20Updated 7 years ago
- Simple PE packer with RtlCompressBuffer☆21Updated 10 years ago
- ☆17Updated 5 years ago
- DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10☆53Updated last year
- Simple proof of concept code for injecting libraries on 64bit processes from a 32bit process☆96Updated 6 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆36Updated last year
- Class implementation of PowerLoader injection technique☆32Updated 8 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆57Updated 9 years ago
- This repository contains some tools that I have written in the past☆28Updated last year
- ☆34Updated 8 years ago
- A POC for Windows Extension Host hooking☆24Updated 6 years ago
- An API Monitor based on Instrumentation☆44Updated 7 years ago
- PoC for detecting and dumping process hollowing code injection☆52Updated 6 years ago
- ☆14Updated 8 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆33Updated 6 years ago
- Try to transport the tcpip stack of ReactOS to Windows XP.☆17Updated 11 years ago
- Simple header only library to change return address on current stack frame.☆23Updated 9 years ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆78Updated 10 years ago
- Analyze and attack windows applications using dll hijacking vulnerabilities☆59Updated 6 years ago
- This is a simple driver with x64 inline assembly☆57Updated 5 years ago
- Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.☆24Updated 7 years ago
- Assembly code to use for Windows kernel shellcode to edit winlogon.exe ACL☆13Updated 8 years ago
- Shareds for kernel developement☆28Updated 11 years ago
- PoC of BOOST-ed _EPROCESS.VadRoot iterating☆26Updated 11 years ago
- win32/x64 obfuscate framework☆33Updated 6 years ago
- Windows anti-rootkit library☆37Updated 10 years ago