Easy to include string and wstring obfuscation
☆23Mar 12, 2022Updated 3 years ago
Alternatives and similar repositories for XORString
Users that are interested in XORString are comparing it to the libraries listed below
Sorting:
- A simple way to spoof return addresses using an exception handler☆43Aug 3, 2022Updated 3 years ago
- Interprocess communication via a covert timing channel☆26Oct 24, 2025Updated 4 months ago
- A simple process query/manipulation tool using driver hooked system call. (2019)☆12Aug 30, 2021Updated 4 years ago
- A Simple Example☆23Nov 30, 2018Updated 7 years ago
- Simple IOCTL hooking driver for Kernel- User - Mode communication.☆11Jul 26, 2020Updated 5 years ago
- Source code on the 1.44MB 3.5 floppy accompanying the Windows NT File System Internals book.☆20Jul 31, 2019Updated 6 years ago
- a simple intel vt code both support x86 & x64. PatchGuard monitor.☆77Oct 28, 2021Updated 4 years ago
- Hooking Heavens Gate in a weekend☆13Jan 1, 2022Updated 4 years ago
- Very tiny and selective implementation of STL for Windows NT kernel mode drivers☆18Jun 22, 2021Updated 4 years ago
- ☆20Mar 15, 2023Updated 2 years ago
- Some drivers I've written while solving exercises from Practical Reverse Engineering☆15Jan 9, 2022Updated 4 years ago
- Packet Injection With WFP☆16Feb 20, 2023Updated 3 years ago
- research revolving the windows filtering platform callout mechanism☆39May 26, 2024Updated last year
- ☆21Jun 3, 2021Updated 4 years ago
- A minimalistic way to spoof return addresses without using exceptions☆17Jul 26, 2022Updated 3 years ago
- IO隐藏通信封装☆17May 31, 2021Updated 4 years ago
- An example code of CiGetCertPublisherName☆17Mar 24, 2022Updated 3 years ago
- ☆17Apr 21, 2022Updated 3 years ago
- Macro-header for compile-time C obfuscation (tcc, win x86/x64)☆13Aug 4, 2025Updated 6 months ago
- Code Integrity Violation Spotter☆17Jun 11, 2024Updated last year
- POC for a race condition exploit using directory junctions in Windows☆17Apr 26, 2020Updated 5 years ago
- Debug Print viewer (user and kernel)☆72Feb 7, 2024Updated 2 years ago
- ☆17Oct 31, 2022Updated 3 years ago
- WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs☆18Aug 11, 2023Updated 2 years ago
- Illustrates the concept of return address spoofing, and how it is used.☆14May 13, 2020Updated 5 years ago
- Decoder for VMProtect hwids☆18Aug 1, 2022Updated 3 years ago
- ☆13Sep 21, 2025Updated 5 months ago
- 2022 Updated Kernelmode-Code☆33Mar 23, 2024Updated last year
- Small class to parse debug info from PEs, download their respective PDBs from the Microsoft Public Symbol Server and calculate RVAs of fu…☆44Apr 1, 2023Updated 2 years ago
- My try to implement a virtual CPU in C☆19Nov 18, 2023Updated 2 years ago
- Executes Read/Write process memory with `NtQueryCompositionSurfaceStatistics`☆23Feb 10, 2024Updated 2 years ago
- basic dll injector using Qt☆20May 31, 2017Updated 8 years ago
- ☆38Nov 30, 2022Updated 3 years ago
- Compile-Time Strings and Numbers Encryption for C++20☆59Feb 9, 2025Updated last year
- ☆44Oct 7, 2018Updated 7 years ago
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆21Jan 25, 2022Updated 4 years ago
- Winlogon and LSA Notification Password Filters☆19Jul 11, 2023Updated 2 years ago
- A C++ syscall ID extractor for Windows. Developed, debugged and tested on 20H2.☆21May 25, 2021Updated 4 years ago
- D☆44May 3, 2021Updated 4 years ago