Kernel DLL Injector using NX Bit Swapping and VAD hide for hiding injected DLL
☆221Nov 12, 2020Updated 5 years ago
Alternatives and similar repositories for MMInject
Users that are interested in MMInject are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Manual mapper that uses PTE manipulation, Virtual Address Descriptor (VAD) manipulation, and forceful memory allocation to hide executabl…☆398Jan 29, 2022Updated 4 years ago
- Easy Anti PatchGuard☆221Apr 9, 2021Updated 5 years ago
- Hook NtDeviceIoControlFile with PatchGuard☆107May 10, 2022Updated 3 years ago
- A wrapper class to hide the original calling address of a function☆56Aug 9, 2020Updated 5 years ago
- 不使用3环挂钩进行DWM桌面绘制☆82Dec 9, 2021Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.☆347Apr 27, 2020Updated 6 years ago
- ☆99Oct 6, 2017Updated 8 years ago
- Hiding the window from screenshots using the function win32kfull::GreProtectSpriteContent☆639Dec 26, 2024Updated last year
- The Kernel-Mode Winsock library, supporting TCP, UDP and Unix sockets (DGRAM and STREAM).☆287Jan 27, 2025Updated last year
- usermode driver mapper that forcefully loads any signed kernel driver (legit cert) with a big enough section (example: .data, .rdata) to …☆483Jan 3, 2022Updated 4 years ago
- ☆225Mar 11, 2023Updated 3 years ago
- A mapper that maps shellcode into loaded large page drivers☆336Apr 26, 2022Updated 4 years ago
- 可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。☆108Sep 1, 2022Updated 3 years ago
- 从MmPfnData中枚举进程和页目录基址☆208Aug 18, 2023Updated 2 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Kernel-based memory hacking framework communicating with a kernel driver via sockets.☆97May 25, 2021Updated 4 years ago
- 内核驱动加载/卸载痕迹清理,努力绕过反作弊吧 PiDDBCacheTable and MmLastUnloadedDriver☆189Feb 11, 2023Updated 3 years ago
- ☆47Nov 26, 2020Updated 5 years ago
- Windows Kernel inject (no module no thread)☆282Nov 11, 2022Updated 3 years ago
- Hide codes/data in the kernel address space.☆187May 8, 2021Updated 4 years ago
- InfinityHookPro Win7 -> Win11 latest☆554Feb 7, 2023Updated 3 years ago
- the basic version of the ring0 physical memory read/write tool☆92Aug 18, 2019Updated 6 years ago
- ☆143Dec 10, 2022Updated 3 years ago
- Allows you to communicate with the kernel mode to manipulate memory in a stealthy way to avoid kernel anticheats.☆173May 8, 2022Updated 3 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Code for Battleyes shellcode☆235Nov 11, 2021Updated 4 years ago
- x64 free protect Features 1.process/thread handle protect 2.anti taskmgr.exe 3.hide process 4.anti-debugger(user/kernel debugger)☆88Apr 3, 2019Updated 7 years ago
- ☆158May 21, 2024Updated last year
- base for testing☆189Sep 28, 2024Updated last year
- All Nt Syscall and W32k Syscall in one asm, include, and call it!☆58Nov 4, 2021Updated 4 years ago
- Some garbage drivers written for getting started☆64Dec 31, 2019Updated 6 years ago
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆104Jun 26, 2023Updated 2 years ago
- VT-based PCI device monitor (SPI)☆158Oct 29, 2020Updated 5 years ago
- Code Injection, Inject malicious payload via pagetables pml4.☆243Jul 7, 2021Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A x64 Windows Rootkit using SSDT or Hypervisor hook☆568Jan 4, 2025Updated last year
- Global DLL injector☆71May 16, 2021Updated 4 years ago
- Rendering on external windows via hijacking thread contexts☆406Jun 28, 2020Updated 5 years ago
- Archive R/W into any protected process by changing the value of KTHREAD->PreviousMode☆161Jul 31, 2022Updated 3 years ago
- 轻量级自动分析病毒程序调用上下文、游戏反调试实现技术平台☆100Jun 21, 2020Updated 5 years ago
- Kernel-Mode extended version of https://github.com/microsoft/Detours☆179Jun 1, 2025Updated 10 months ago
- This project will give you an example how you can hook a kernel vtable function that cannot be directly called☆83Dec 25, 2021Updated 4 years ago