Teq2 / SEH-Over-VEHLinks
Implementation of a dispatcher for Structured Exceptions inside a Vectored Exception Handler
☆41Updated 5 years ago
Alternatives and similar repositories for SEH-Over-VEH
Users that are interested in SEH-Over-VEH are comparing it to the libraries listed below
Sorting:
- kernel-mode TDI client which can send and receive HTTP requests☆55Updated 7 years ago
- Manual PE image mapper☆65Updated 12 years ago
- Code injection by hijacking threads in Windows 32-bit applications☆43Updated 7 years ago
- Standalone program to download PDB Symbol files for debugging without WDK☆78Updated 6 years ago
- A reflexive driver loader to bypass Windows DSE (featuring a custom PE loader)☆43Updated 7 years ago
- (DEPRECATED) A simple anti-anti debug library for Windows☆30Updated 5 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆78Updated 14 years ago
- ☆24Updated 6 years ago
- Analyze PatchGuard☆57Updated 7 years ago
- This is the first software system, which can detect a stealthy hypervisor and calculate several nested ones even under countermeasures.☆84Updated 10 years ago
- usermode standalone kernel interface☆111Updated 7 years ago
- Example of hijacking system calls via function pointer tables☆31Updated 4 years ago
- POC of sysenter x64 LSTAR MSR hook☆40Updated 11 years ago
- C++ 17 compile time string encryption supporting vs2010-2019☆75Updated 5 years ago
- win32/x64 obfuscate framework☆33Updated 6 years ago
- Analysing and defeating PatchGuard universally☆35Updated 4 years ago
- PE(compressed dll) memory loader using nt api☆46Updated 8 years ago
- Figuring out the cause of a handle downgrade☆24Updated 2 years ago
- A sample on how to inject a DLL from a kernel driver☆62Updated 9 years ago
- Simple proof of concept code for injecting libraries on 64bit processes from a 32bit process☆96Updated 7 years ago
- Shareds for kernel developement☆28Updated 11 years ago
- ☆45Updated 7 years ago
- This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness☆53Updated 6 years ago
- A simple kernel mode driver that hooks some values at the KUSER_SHARED_DATA structure.☆27Updated 5 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆36Updated last year
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆63Updated 6 years ago
- NT reversal☆26Updated 7 years ago
- Simple header only library to change return address on current stack frame.☆23Updated 9 years ago
- core of pkn game hacking project. Including mainly for process management, memory management, and DLL injecttion. Also PE analysis, windo…☆67Updated 6 years ago
- Library for linking multiple PE\PE + files to one☆52Updated last year