Speedi13 / Custom-GetProcAddress-and-GetModuleHandle-and-more
Custom GetProcAddress, GetModuleHandleA and some dbghelp.dll functions
☆81Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for Custom-GetProcAddress-and-GetModuleHandle-and-more
- A proof of concept demonstrating instrumentation callbacks on Windows 10 21h1 with a TLS variable to ensure all syscalls are caught.☆117Updated 3 years ago
- Inline syscalls made for MSVC supporting x64 and WOW64☆175Updated last year
- based on https://github.com/secrary/Hooking-via-InstrumentationCallback☆67Updated 5 years ago
- A simple tool to assemble shellcode ready to be copy-pasted into code☆64Updated 2 years ago
- Reverse engineering winapi function loadlibrary.☆70Updated last year
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆226Updated 2 years ago
- kernel to user mode APC injector☆43Updated 2 years ago
- TS-Changer - Forces the machine in/out of TestSigning Mode at runtime.☆64Updated last year
- load unsigned kernel-driver by patching dse in 248 lines☆110Updated 8 months ago
- Compileable POC of namazso's x64 return address spoofer.☆47Updated 4 years ago
- Exploit MsIo vulnerable driver☆83Updated 3 years ago
- A quick-and-dirty anti-hook library proof of concept.☆101Updated 6 years ago
- Custom LoadLibrary / GetProcAddress (x86 / x64) - Load DLL and retrieve functions manually☆73Updated last year
- Elevate a process to be a protected process☆143Updated 5 years ago
- A modern, mod independent open source cheat for Enemy Territory☆65Updated this week
- DSE & PG bypass via BYOVD attack☆37Updated 7 months ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆110Updated 2 years ago
- manual map unsigned driver over signed memory☆183Updated 7 months ago
- KDP compatible unsigned driver loader leveraging a write primitive in one of the IOCTLs of gdrv.sys☆132Updated 5 months ago
- State of the art DLL injector that took 20 minutes to make☆207Updated last year
- x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code☆197Updated 3 years ago
- A tool for detecting manual/direct syscalls in x86 and x64 processes using Nirvana Hooks.☆105Updated 2 years ago
- spoof return address☆70Updated last year
- Unknowncheats Magically Optimized Tidy Mapper using nvaudio☆100Updated 5 months ago
- Handling C++ & __try exceptions without the need of built-in handlers.☆65Updated 3 years ago
- ☆225Updated 2 months ago
- Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…☆106Updated last year
- Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.☆135Updated 2 years ago
- ☆39Updated 3 years ago
- ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel drive…☆46Updated last year