SamuelTulach / meme-rw
Archive R/W into any protected process by changing the value of KTHREAD->PreviousMode
☆146Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for meme-rw
- driver manual mapper powered by https://github.com/estimated1337/lenovo_exec☆102Updated last year
- x64 Windows kernel driver mapper, inject unsigned driver using anycall☆115Updated 9 months ago
- This is a simple project of a driver + usermode.☆125Updated 2 years ago
- Drawing from kernelmode without any hooks☆159Updated 2 years ago
- ☆132Updated 10 months ago
- Virtual and physical memory hacking library using gigabyte vulnerable driver☆70Updated last year
- I've developed a rather effective driver for DLL injection targeting EAC Protected Games, and since I'm not aware of any notable games ut…☆84Updated 7 months ago
- Kernel driver that .text hooks a syscall in dxgkrnl.sys which can be called from our user-mode client to send instructions like rpm/wpm a…☆147Updated last year
- base for testing☆156Updated last month
- A Kernel Driver that can be used for a cheat or malware base to circumvent common cache & structure table checks. PsLoadedModuleList howe…☆75Updated 2 months ago
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆80Updated last year
- ☆76Updated 2 years ago
- This is my EAC Bypass (Setup) Driver that offers an undetected communication and callback handler/hooking system through IOCTL.☆70Updated 2 months ago
- ☆150Updated 6 months ago
- Check your detection vectors☆137Updated this week
- A proof of concept demonstrating communication via mapped shared memory structures between a user-mode process and a kernel-mode payload �…☆74Updated 3 years ago
- Using CVE-2021-40449 to manual map kernel mode driver☆99Updated 2 years ago
- ☆68Updated 7 months ago
- An Unsigned Driver Mapper for Windows 10 22H2 -> Windows 11 23H2 that uses PdFwKrnl to exploit the Read/Write IOCTL Calls to disable DSE …☆82Updated 2 months ago
- Unknowncheats Magically Optimized Tidy Mapper using nvaudio☆100Updated 5 months ago
- manually map driver for a signed driver memory space☆138Updated 3 years ago
- Standard Kernel Library for Windows hacking in C++☆91Updated 3 months ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆110Updated 2 years ago
- Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver☆152Updated last year
- ☆121Updated 2 years ago
- Reverse Engineering a signed kernel driver packed and virtualized with VMProtect 3.6☆103Updated last year
- This project will give you an example how you can hook a kernel vtable function that cannot be directly called☆80Updated 2 years ago
- ☆92Updated 3 weeks ago