Record & prevent file deletion in kernel mode
☆46Jul 22, 2020Updated 5 years ago
Alternatives and similar repositories for Prevent_File_Deletion
Users that are interested in Prevent_File_Deletion are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- My first kernel-mode process protection driver!☆37Feb 20, 2020Updated 6 years ago
- Windows file system minifilter driver which generates backup copies of certain files before they change☆47Oct 13, 2018Updated 7 years ago
- Record & prevent process creation in kernel mode☆44Sep 14, 2021Updated 4 years ago
- Procmonel is Procmon like monitoring system implemented using Microsoft WDK☆13Dec 25, 2019Updated 6 years ago
- filter driver to hide files and directories☆25Feb 12, 2024Updated 2 years ago
- Hot reload DLL on windows☆11Oct 7, 2018Updated 7 years ago
- File system minifilter driver for Windows to block symbolic link attacks.☆51Dec 16, 2020Updated 5 years ago
- VCL-based UI components for system tools that use NtUtilsLibrary☆21Mar 4, 2026Updated 2 weeks ago
- A program that sends a lot of fake ARP packets to the router. This may kick everyone out of the network!☆22Dec 24, 2019Updated 6 years ago
- This is the AV ("protection solution") used for my windows 10 rootkit main project. this includes the installer stager program, a service…☆13May 2, 2024Updated last year
- winspool.drv内存劫持补丁的应用☆10Mar 14, 2020Updated 6 years ago
- Overwrite MBR and add own custom message☆16Apr 1, 2020Updated 5 years ago
- Suspend and resume processes by using functions in ntdll.dll.☆15Feb 23, 2014Updated 12 years ago
- silence file system monitoring components by hooking their minifilters☆61Jan 31, 2024Updated 2 years ago
- it's a driver injector or driver loader header lib(Windows)☆12Aug 5, 2023Updated 2 years ago
- ☆12Oct 12, 2021Updated 4 years ago
- Disable Ctrl+Alt+Del hotkey☆22Oct 23, 2019Updated 6 years ago
- ☆11Sep 23, 2017Updated 8 years ago
- PsSetCreateProcessNotifyRoutine/Ex/Ex2 hook☆13May 30, 2024Updated last year
- Win32 API Hook偵測☆10Oct 1, 2017Updated 8 years ago
- ☆23Sep 17, 2019Updated 6 years ago
- [ICSE'24] An Empirical Study of Data Disruption by Ransomware Attacks☆14Mar 1, 2024Updated 2 years ago
- Infects PE files with a shellcode☆22Oct 20, 2018Updated 7 years ago
- Ransomware detection application for Windows using Windows Minifilter driver☆94Jun 6, 2020Updated 5 years ago
- Not mine, just saved☆14Nov 12, 2023Updated 2 years ago
- windows kernel pagehook☆42Oct 30, 2022Updated 3 years ago
- Demonstrate the behavior of the tunnel cache on Windows☆11Aug 13, 2019Updated 6 years ago
- Ransomware Dataset for arXiv:1609.03020☆30Dec 29, 2021Updated 4 years ago
- A step-by-step walkthrough of how to write a Client and a Driver to communicate with each other and boost the priority of a thread.☆17Dec 12, 2023Updated 2 years ago
- Remote memory library in C++17.☆34May 31, 2018Updated 7 years ago
- ☆27Jun 24, 2022Updated 3 years ago
- The Network project is a C++ encapsulation of WinSock2 to form a lightweight network library; The Graphics project is a C++ encapsulation…☆13Oct 31, 2017Updated 8 years ago
- A basic PE parser for 32-bit Windows executables.☆14May 24, 2017Updated 8 years ago
- simple user-mode Rootkit☆109Oct 24, 2022Updated 3 years ago
- A Practical example of ELAM (Early Launch Anti-Malware)☆36Nov 12, 2021Updated 4 years ago
- Dump LSASS by spoofing command line arguments to procdump.☆20Oct 21, 2024Updated last year
- Protect a file from being deleted using windows kernel file system minifilter driver☆40Apr 2, 2021Updated 4 years ago
- HWID Spoofer which spoofs disk serials, smart disk serials and SMBIOS.☆41Aug 31, 2020Updated 5 years ago
- x64 Windows package of the shellcode2exe tool☆14Nov 23, 2020Updated 5 years ago