Speedi13 / Custom-GetProcAddress-and-GetModuleHandle-and-moreLinks
Custom GetProcAddress, GetModuleHandleA and some dbghelp.dll functions
☆85Updated 6 years ago
Alternatives and similar repositories for Custom-GetProcAddress-and-GetModuleHandle-and-more
Users that are interested in Custom-GetProcAddress-and-GetModuleHandle-and-more are comparing it to the libraries listed below
Sorting:
- Exploit MsIo vulnerable driver☆113Updated 4 years ago
- Inline syscalls made for MSVC supporting x64 and WOW64☆187Updated 2 years ago
- A simple tool to assemble shellcode ready to be copy-pasted into code☆68Updated 3 years ago
- Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…☆129Updated 2 years ago
- kernel to user mode APC injector☆45Updated 3 years ago
- Custom LoadLibrary / GetProcAddress (x86 / x64) - Load DLL and retrieve functions manually☆95Updated 2 years ago
- Elevate a process to be a protected process☆153Updated 6 years ago
- based on https://github.com/secrary/Hooking-via-InstrumentationCallback☆71Updated 5 years ago
- A quick-and-dirty anti-hook library proof of concept.☆105Updated 7 years ago
- A tool for detecting manual/direct syscalls in x86 and x64 processes using Nirvana Hooks.☆114Updated 3 years ago
- TS-Changer - Forces the machine in/out of TestSigning Mode at runtime.☆64Updated 2 years ago
- Kernel LdrLoadDll injector☆265Updated 6 years ago
- CVE-2022-3699 with arbitrary kernel code execution capability☆70Updated 2 years ago
- Load your driver like win32k.sys☆257Updated 3 years ago
- DSE & PG bypass via BYOVD attack☆64Updated 2 months ago
- State of the art DLL injector that took 20 minutes to make☆220Updated 2 years ago
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆156Updated 2 years ago
- manual map unsigned driver over signed memory☆202Updated last year
- A modern, mod independent open source cheat for Enemy Territory☆68Updated 2 months ago
- Compileable POC of namazso's x64 return address spoofer.☆50Updated 5 years ago
- ☆155Updated last year
- x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code☆206Updated 4 years ago
- ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel drive…☆47Updated 2 years ago
- hidden_syscall - syscaller without using syscall instruction in code☆62Updated 2 years ago
- load unsigned kernel-driver by patching dse in 248 lines☆134Updated last year
- Various Process Injection Techniques☆158Updated 3 years ago
- ntoskrnl .data hooks for UM-KM communication☆51Updated last year
- A proof of concept demonstrating instrumentation callbacks on Windows 10 21h1 with a TLS variable to ensure all syscalls are caught.☆139Updated 3 years ago
- Obfuscate calls to imports by patching in stubs☆72Updated 4 years ago
- Translate virtual addresses to physical addresses from usermode.☆52Updated last year