Teq2 / SEH-Over-VEHView external linksLinks
Implementation of a dispatcher for Structured Exceptions inside a Vectored Exception Handler
☆42Feb 15, 2020Updated 5 years ago
Alternatives and similar repositories for SEH-Over-VEH
Users that are interested in SEH-Over-VEH are comparing it to the libraries listed below
Sorting:
- ShellcodeVM☆15Jun 20, 2016Updated 9 years ago
- Modify process handle permissions☆61Nov 30, 2016Updated 9 years ago
- a demo for x86/x64's paging memory management learning, convert a virtual address from ring3 to physical address in ring0☆19Aug 26, 2017Updated 8 years ago
- ☆19Jul 20, 2015Updated 10 years ago
- VEH Redirect & VEH Debugger☆23May 18, 2020Updated 5 years ago
- Black Signature Driver☆24Oct 20, 2023Updated 2 years ago
- Hook IDT vector 0xb2 to detect SCI in 64bit windows.☆34Aug 27, 2022Updated 3 years ago
- The kernel mode Standard Template Library Template☆19Feb 22, 2020Updated 5 years ago
- eac memory sig maker☆14Jun 10, 2021Updated 4 years ago
- codes for my blog post: https://secrary.com/Random/InstrumentationCallback/☆183Nov 30, 2017Updated 8 years ago
- Anti-virus engine in Windows using VC++ 6.0 and MFC. We applied windows multithreading in virus scan method and user interface. Using MFC…☆16Oct 21, 2016Updated 9 years ago
- ☆17Mar 3, 2016Updated 9 years ago
- Example of making debugger using Hardware Breakpoint + VEH☆18May 13, 2021Updated 4 years ago
- kernel-mode TDI client which can send and receive HTTP requests☆56Jun 9, 2018Updated 7 years ago
- Demo List cm/ps/ob/minifilter callback And Patch/Bypass it☆29Dec 5, 2017Updated 8 years ago
- PoC of BOOST-ed _EPROCESS.VadRoot iterating☆27May 21, 2014Updated 11 years ago
- Branch based windows debugger☆22Jul 30, 2019Updated 6 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆79Jan 24, 2011Updated 15 years ago
- ☆14Oct 19, 2016Updated 9 years ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆78Aug 12, 2015Updated 10 years ago
- Analysing and defeating PatchGuard universally☆36Nov 4, 2020Updated 5 years ago
- OllyCallTrace is a plugin for OllyDbg to trace the call chain of a thread.☆54Nov 4, 2011Updated 14 years ago
- A simple process query/manipulation tool using driver hooked system call. (2019)☆11Aug 30, 2021Updated 4 years ago
- Today Plugin (x64) - A Plugin For x64dbg☆13Jul 17, 2018Updated 7 years ago
- Assembly code to use for Windows kernel shellcode to edit winlogon.exe ACL☆13Mar 6, 2017Updated 8 years ago
- win10 pgContext dynamic dump (btc version)☆110Jan 15, 2020Updated 6 years ago
- 反外挂☆86Oct 23, 2019Updated 6 years ago
- Disable Driver Callbacks☆104Oct 16, 2017Updated 8 years ago
- windows rpc 使用MIDL+RPC实现HelloWorld☆23Mar 21, 2018Updated 7 years ago
- The dll that can hide itself and then delete itselft.☆32Mar 31, 2013Updated 12 years ago
- ☆14May 9, 2017Updated 8 years ago
- A Win32 logger based on DebugView & ETW.☆16Nov 15, 2017Updated 8 years ago
- C++ helper class to create a process that redirects std in/out/error streams of a child process (Windows API)☆15Oct 9, 2025Updated 4 months ago
- hypervisor in windows device driver by intel vt☆14Aug 25, 2018Updated 7 years ago
- R3劫持所有异常☆15Jan 4, 2021Updated 5 years ago
- (shard of furikuri project) assambler for code obfuscation☆19Oct 29, 2019Updated 6 years ago
- AES, RC4, and RSA implemented in C++☆27Dec 16, 2016Updated 9 years ago
- by others☆40Jan 28, 2018Updated 8 years ago
- XEDParse emulator based on asmjit/asmtk.☆21Mar 22, 2024Updated last year