Oliver-1-1 / EtwKeyboardDetection
☆24Updated last month
Related projects ⓘ
Alternatives and complementary repositories for EtwKeyboardDetection
- Kernel Level NMI Callback Blocker☆32Updated 2 months ago
- POC Hook of nt!HvcallCodeVa☆50Updated last year
- 将驱动映射到会话空间☆33Updated 2 years ago
- partially disable patchguard up to win11 21H2☆16Updated 5 months ago
- A method to Disable DSE using .data ptr hooks☆26Updated 9 months ago
- ☆70Updated 2 years ago
- UM-KM Communication using registry callbacks☆39Updated 4 years ago
- ntoskrnl .data hooks for UM-KM communication☆34Updated 5 months ago
- ☆37Updated 4 months ago
- clearing traces of a loaded driver☆44Updated 2 years ago
- Mapping your code on a 0x1000 size page☆69Updated 2 years ago
- An advanced DKOM for drivers with "DRIVER_OBJECT"☆16Updated last year
- Hiding a system thread against conventional means of detection☆35Updated 4 years ago
- Freeze target threads (external - internal ) by avoiding SuspendThread detections. Or access registers from start address.☆30Updated 7 months ago
- ☆28Updated last year
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆80Updated last year
- This is a POC Test project for INTEL CPUs on blocking NMI Entries through the IDT Handler.☆21Updated last month
- Injecting dll to protected games using ioclt and code cave communications, works on eac, be protected games but made for fn☆53Updated 7 months ago
- ☆50Updated 11 months ago
- A library to assist with memory & code protection.☆53Updated 8 months ago
- Windows PDB parser for kernel-mode environment.☆90Updated last year
- Kernel ReClassEx☆63Updated last year
- A poc that abuses Enclave☆36Updated 2 years ago
- Example driver on how to use SKLib☆4Updated 3 months ago
- ☆49Updated 2 years ago
- A simple ida python script to find .data ptr☆47Updated last year