Rhydon1337 / windows-kernel-process-protector
Protect a process from code injection, termination and hooking
☆46Updated 3 years ago
Alternatives and similar repositories for windows-kernel-process-protector:
Users that are interested in windows-kernel-process-protector are comparing it to the libraries listed below
- Force a file delete using a windows kernel driver☆64Updated 2 years ago
- ☆29Updated 6 months ago
- A poc that abuses Enclave☆38Updated 2 years ago
- POC Hook of nt!HvcallCodeVa☆51Updated last year
- windows kernel pagehook☆39Updated 2 years ago
- Protect a file from being deleted using windows kernel file system minifilter driver☆37Updated 4 years ago
- ☆68Updated 2 years ago
- UM-KM Communication using registry callbacks☆39Updated 4 years ago
- clearing traces of a loaded driver☆47Updated 2 years ago
- Driver shared section communication☆46Updated last month
- Virtual and physical memory hacking library using gigabyte vulnerable driver☆71Updated 2 years ago
- Bypassing kernel patch protection runtime☆20Updated 2 years ago
- x64 Windows implementation of virtual-address to physical-address translation☆40Updated 3 years ago
- This is a POC Test project for INTEL CPUs on blocking NMI Entries through the IDT Handler.☆44Updated 6 months ago
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆85Updated last year
- PoC kernel to usermode injection☆80Updated last year
- silence file system monitoring components by hooking their minifilters☆56Updated last year
- Windows PDB parser for kernel-mode environment.☆95Updated 2 years ago
- mouseclassservicecallback detection via hook☆50Updated 3 years ago
- ☆46Updated 3 years ago
- 将驱动映射到会话空间☆34Updated 2 years ago
- Handling C++ & __try exceptions without the need of built-in handlers.☆70Updated 3 years ago
- A library to assist with memory & code protection.☆56Updated last year
- Hiding a system thread against conventional means of detection☆40Updated 4 years ago
- This is an EfiGuard BootLoader that can boot EfiGuard from Usermode with no USB or Setup as a Single Executable with automatic File Dumpi…☆53Updated 7 months ago
- ☆49Updated last year
- ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel drive…☆48Updated 2 years ago
- page table manipulation to gain physical r/w☆40Updated 11 months ago
- Kernel Level NMI Callback Blocker☆80Updated 7 months ago
- InfinityHookProMax: Make InfinityHook great great again☆43Updated last year