Rhydon1337 / windows-kernel-process-protector
Protect a process from code injection, termination and hooking
☆37Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for windows-kernel-process-protector
- windows kernel pagehook☆37Updated 2 years ago
- A poc that abuses Enclave☆36Updated 2 years ago
- UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.☆44Updated last year
- PoC kernel to usermode injection☆56Updated 8 months ago
- Force a file delete using a windows kernel driver☆60Updated 2 years ago
- POC Hook of nt!HvcallCodeVa☆49Updated last year
- Debug Print viewer (user and kernel)☆63Updated 9 months ago
- windows kernelmode driver to inject dll into each and every process and perform systemwide function hooking☆52Updated 2 years ago
- Allows for same-file KernelMode function execution using Encrypted addresses of Functions☆19Updated 2 weeks ago
- detect hypervisor with Nmi Callback☆34Updated 2 years ago
- silence file system monitoring components by hooking their minifilters☆51Updated 9 months ago
- clearing traces of a loaded driver☆44Updated 2 years ago
- A Simple Example☆20Updated 5 years ago
- IAT Hooking POC (x86 / x64) - Hook functions through the IAT☆29Updated 3 months ago
- Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.☆27Updated 2 years ago
- x64 Windows implementation of virtual-address to physical-address translation☆41Updated 3 years ago
- Protect a file from being deleted using windows kernel file system minifilter driver☆34Updated 3 years ago
- X86/X64 Hardware Breakpoint Manager☆39Updated 3 years ago
- Bypassing kernel patch protection runtime☆19Updated last year
- Windows kernel drivers simple HTTP library for modern C++☆41Updated 6 years ago
- ☆29Updated 3 years ago
- ☆24Updated last year
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆77Updated last year
- https://githacks.org/Shawick/goodeye.git☆44Updated 4 years ago
- Based on minhook☆27Updated last year
- Binary rewriter for 64-bit PE files.☆43Updated 9 months ago
- PAGE_GUARD based hooking library☆39Updated 2 years ago
- direct systemcalls with a modern c++20 interface.☆41Updated last year