SweetIceLolly / Prevent_File_DeletionLinks
Record & prevent file deletion in kernel mode
☆44Updated 5 years ago
Alternatives and similar repositories for Prevent_File_Deletion
Users that are interested in Prevent_File_Deletion are comparing it to the libraries listed below
Sorting:
- Add an empty section to a PE file☆53Updated 8 years ago
- silence file system monitoring components by hooking their minifilters☆59Updated last year
- c++ implementation of windows heavens gate☆72Updated 4 years ago
- ☆31Updated 4 years ago
- Reimplement CreateProcessInternalW via Windows 10 20H1+/Windows 11 Base on NtCreateUserProcess-Post☆66Updated 11 months ago
- A packed & protected Module Loader and more, for 64-bit Windows☆30Updated 4 years ago
- Record & prevent process creation in kernel mode☆44Updated 3 years ago
- A library with four different methods to execute shellcode in a process☆26Updated 5 years ago
- Protect a file from being deleted using windows kernel file system minifilter driver☆38Updated 4 years ago
- Injects position-dependent code into a code cave in an executable file, and applies relocations.☆23Updated 2 years ago
- Static Library For Windows Drivers☆36Updated 6 months ago
- Protect a process from code injection, termination and hooking☆49Updated 4 years ago
- Proof-of-Concept software for detecting AV/EDR hooks in Windows libraries.☆31Updated 3 years ago
- Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler☆29Updated 4 years ago
- windows kernelmode driver to inject dll into each and every process and perform systemwide function hooking☆54Updated 2 years ago
- Elevate arbitrary MSR writes to kernel execution.☆38Updated last year
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆68Updated 2 years ago
- Infects PE files with a shellcode☆19Updated 6 years ago
- Load Dll into Kernel space☆38Updated 3 years ago
- UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.☆45Updated 2 years ago
- ☆26Updated 4 years ago
- Force a file delete using a windows kernel driver☆67Updated 3 years ago
- Reverse Socks5 proxy for windows☆15Updated 2 years ago
- (This is a fork used primarily to submit patches into upstream repository) RpcView is a free tool to explore and decompile Microsoft RPC …☆19Updated 2 years ago
- Shh0ya Kernel Hook Driver☆23Updated 4 years ago
- Fake Timestamps of Driver Certificates while keeping validity.☆17Updated 4 years ago
- LSASS INJECTOR☆35Updated 6 years ago
- ☆26Updated 7 years ago
- Lightweight Portable Executable parsing library and a demo peParser application.☆81Updated 2 years ago
- windows rootkit☆61Updated last year