Record & prevent file deletion in kernel mode
☆46Jul 22, 2020Updated 5 years ago
Alternatives and similar repositories for Prevent_File_Deletion
Users that are interested in Prevent_File_Deletion are comparing it to the libraries listed below
Sorting:
- My first kernel-mode process protection driver!☆37Feb 20, 2020Updated 6 years ago
- Windows file system minifilter driver which generates backup copies of certain files before they change☆47Oct 13, 2018Updated 7 years ago
- Procmonel is Procmon like monitoring system implemented using Microsoft WDK☆12Dec 25, 2019Updated 6 years ago
- VCL-based UI components for system tools that use NtUtilsLibrary☆21Nov 20, 2025Updated 3 months ago
- filter driver to hide files and directories☆25Feb 12, 2024Updated 2 years ago
- Record & prevent process creation in kernel mode☆44Sep 14, 2021Updated 4 years ago
- This is the AV ("protection solution") used for my windows 10 rootkit main project. this includes the installer stager program, a service…☆13May 2, 2024Updated last year
- it's a driver injector or driver loader header lib(Windows)☆12Aug 5, 2023Updated 2 years ago
- File system minifilter driver for Windows to block symbolic link attacks.☆51Dec 16, 2020Updated 5 years ago
- A basic PE parser for 32-bit Windows executables.☆14May 24, 2017Updated 8 years ago
- Not mine, just saved☆14Nov 12, 2023Updated 2 years ago
- Win32 API Hook偵測☆10Oct 1, 2017Updated 8 years ago
- ☆12Oct 12, 2021Updated 4 years ago
- Protect a file from being deleted using windows kernel file system minifilter driver☆39Apr 2, 2021Updated 4 years ago
- ☆27Jun 24, 2022Updated 3 years ago
- Single header library to simplify the usage of direct syscalls. x64/x86☆14Feb 26, 2023Updated 3 years ago
- HWID Spoofer which spoofs disk serials, smart disk serials and SMBIOS.☆41Aug 31, 2020Updated 5 years ago
- Remote memory library in C++17.☆34May 31, 2018Updated 7 years ago
- Ransomware detection application for Windows using Windows Minifilter driver☆93Jun 6, 2020Updated 5 years ago
- Dump LSASS by spoofing command line arguments to procdump.☆20Oct 21, 2024Updated last year
- ☆59Jun 8, 2022Updated 3 years ago
- An open source library for operating the Windows Overlay Filter driver.☆22Jan 16, 2019Updated 7 years ago
- A framework for backdooring Microsoft Nuget packages.☆10Jan 9, 2024Updated 2 years ago
- hook KeyboardClassServiceCallback to prevent messing up sistema☆26Nov 14, 2023Updated 2 years ago
- Overwrite MBR and add own custom message☆16Apr 1, 2020Updated 5 years ago
- silence file system monitoring components by hooking their minifilters☆60Jan 31, 2024Updated 2 years ago
- Corsair LL Access driver abuse☆24Apr 16, 2021Updated 4 years ago
- minihttp by libcurl, support https.☆15Oct 12, 2019Updated 6 years ago
- ☆23Sep 17, 2019Updated 6 years ago
- BOF and C++ implementation of the Windows Defender sandboxing technique described by Elastic Security Labs/Gabriel Landau.☆24Jul 5, 2023Updated 2 years ago
- ☆29Dec 29, 2022Updated 3 years ago
- Шаблон полнофункционального драйвера и обёртки над ядерным API☆114Aug 28, 2016Updated 9 years ago
- Easy Transparent Encrypted File System Based on Minifilter File System Driver☆35Feb 23, 2026Updated last week
- PsSetCreateProcessNotifyRoutine/Ex/Ex2 hook☆12May 30, 2024Updated last year
- The Network project is a C++ encapsulation of WinSock2 to form a lightweight network library; The Graphics project is a C++ encapsulation…☆13Oct 31, 2017Updated 8 years ago
- A SOCKS5-configured syscall hook that allows transparent TCP proxying on Windows for IPv4 and IPv6.☆26Jul 9, 2021Updated 4 years ago
- ☆24Mar 4, 2019Updated 7 years ago
- A project on the Unicorn emulator to emulate the code of Pe files in windows☆28Sep 12, 2024Updated last year
- SyscallLoader☆11Sep 13, 2021Updated 4 years ago