Teq2 / SEH-Over-VEHLinks
Implementation of a dispatcher for Structured Exceptions inside a Vectored Exception Handler
☆41Updated 5 years ago
Alternatives and similar repositories for SEH-Over-VEH
Users that are interested in SEH-Over-VEH are comparing it to the libraries listed below
Sorting:
- Analyze PatchGuard☆57Updated 6 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆77Updated 14 years ago
- POC of sysenter x64 LSTAR MSR hook☆39Updated 10 years ago
- Manual PE image mapper☆65Updated 11 years ago
- ☆68Updated 4 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆35Updated 10 months ago
- Library for kernel and user mode splicing for Windows (x86 and x64).☆63Updated 12 years ago
- A library for intel VT-x hypervisor functionality supporting EPT shadowing.☆50Updated 4 years ago
- Shareds for kernel developement☆28Updated 11 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆59Updated 5 years ago
- kernel-mode TDI client which can send and receive HTTP requests☆55Updated 6 years ago
- Code injection by hijacking threads in Windows 32-bit applications☆43Updated 6 years ago
- A driver to intercept low level windows events☆61Updated 5 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆67Updated 5 years ago
- Standalone program to download PDB Symbol files for debugging without WDK☆76Updated 5 years ago
- An example of a client and server using Windows' ALPC functions to send and receive data.☆96Updated 4 months ago
- Helper utility for debugging windows PE/PE+ loader.☆52Updated 10 years ago
- IA32-doc is a project which aims to put as many definitions from the Intel Manual into machine-processable format as possible☆16Updated 3 years ago
- A reflexive driver loader to bypass Windows DSE (featuring a custom PE loader)☆41Updated 6 years ago
- Resolve DOS MZ executable symbols at runtime☆95Updated 3 years ago
- MIR-Engine☆24Updated 7 years ago
- NT reversal☆25Updated 6 years ago
- This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness☆52Updated 5 years ago
- Documenting system information classes and their uses☆51Updated 3 years ago
- Debug Print viewer (user and kernel)☆66Updated last year
- Simple header only library to change return address on current stack frame.☆24Updated 8 years ago
- Analysing and defeating PatchGuard universally☆35Updated 4 years ago
- core of pkn game hacking project. Including mainly for process management, memory management, and DLL injecttion. Also PE analysis, windo…☆65Updated 6 years ago
- Example of hijacking system calls via function pointer tables☆31Updated 3 years ago
- ☆24Updated 6 years ago