Speedi13 / Custom-GetProcAddress-and-GetModuleHandle-and-moreLinks
Custom GetProcAddress, GetModuleHandleA and some dbghelp.dll functions
☆81Updated 6 years ago
Alternatives and similar repositories for Custom-GetProcAddress-and-GetModuleHandle-and-more
Users that are interested in Custom-GetProcAddress-and-GetModuleHandle-and-more are comparing it to the libraries listed below
Sorting:
- Inline syscalls made for MSVC supporting x64 and WOW64☆181Updated last year
- based on https://github.com/secrary/Hooking-via-InstrumentationCallback☆71Updated 5 years ago
- A simple tool to assemble shellcode ready to be copy-pasted into code☆68Updated 2 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆113Updated 3 years ago
- kernel to user mode APC injector☆44Updated 3 years ago
- Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…☆121Updated 2 years ago
- Elevate a process to be a protected process☆150Updated 5 years ago
- DSE & PG bypass via BYOVD attack☆51Updated last year
- ☆153Updated last year
- Hooking Windows' exception dispatcher to protect process's PML4☆174Updated 4 months ago
- manual map unsigned driver over signed memory☆187Updated last year
- State of the art DLL injector that took 20 minutes to make☆216Updated last year
- load unsigned kernel-driver by patching dse in 248 lines☆118Updated last year
- minimal msvc-windows exclusive lazy importer for C++☆34Updated 3 years ago
- Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.☆145Updated 3 years ago
- ☆180Updated 3 years ago
- CVE-2022-3699 with arbitrary kernel code execution capability☆70Updated 2 years ago
- Exploit MsIo vulnerable driver☆103Updated 3 years ago
- A proof of concept demonstrating instrumentation callbacks on Windows 10 21h1 with a TLS variable to ensure all syscalls are caught.☆136Updated 3 years ago
- Handling C++ & __try exceptions without the need of built-in handlers.☆71Updated 3 years ago
- x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code☆201Updated 4 years ago
- A tool for detecting manual/direct syscalls in x86 and x64 processes using Nirvana Hooks.☆111Updated 3 years ago
- nmi stackwalking + module verification☆119Updated last year
- A quick-and-dirty anti-hook library proof of concept.☆104Updated 6 years ago
- Hook all callbacks which are registered with LdrRegisterDllNotification☆87Updated 2 months ago
- Load your driver like win32k.sys☆253Updated 2 years ago
- hidden_syscall - syscaller without using syscall instruction in code☆61Updated 2 years ago
- A simple direct syscall wrapper written in C++ with compatibility for x86 and x64 programs.☆50Updated 3 months ago
- Custom LoadLibrary / GetProcAddress (x86 / x64) - Load DLL and retrieve functions manually☆91Updated last year
- ☆77Updated 3 years ago