VollRagm / ShellcodeBakery
A simple tool to assemble shellcode ready to be copy-pasted into code
☆63Updated 2 years ago
Related projects: ⓘ
- hidden_syscall - syscaller without using syscall instruction in code☆58Updated last year
- Virtual and physical memory hacking library using gigabyte vulnerable driver☆69Updated last year
- Freeze target threads (external - internal ) by avoiding SuspendThread detections. Or access registers from start address.☆29Updated 5 months ago
- Unknowncheats Magically Optimized Tidy Mapper using nvaudio☆91Updated 3 months ago
- Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.☆133Updated 2 years ago
- ☆115Updated 2 years ago
- KDM Is a driver that will dumps every drivers that got manually mapped with kdmapper.☆48Updated 2 years ago
- Hiding a system thread against conventional means of detection☆34Updated 3 years ago
- Standard Kernel Library for Windows hacking in C++☆57Updated last month
- manual map unsigned driver over signed memory☆152Updated 5 months ago
- ☆63Updated 4 months ago
- nmi stackwalking + module verification☆78Updated 8 months ago
- Use RTCore64 to map your driver on windows 11.☆90Updated 5 months ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆108Updated 2 years ago
- CVE-2022-3699 with arbitrary kernel code execution capability☆70Updated last year
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆75Updated last year
- ☆145Updated 3 months ago
- ntoskrnl .data hooks for UM-KM communication☆33Updated 3 months ago
- A library to assist with memory & code protection.☆53Updated 6 months ago
- base for testing☆146Updated this week
- Bypassing EasyAntiCheat.sys self-integrity by abusing call hierarchy☆77Updated last year
- A proof of concept demonstrating instrumentation callbacks on Windows 10 21h1 with a TLS variable to ensure all syscalls are caught.☆111Updated 2 years ago
- Obfuscate calls to imports by patching in stubs☆58Updated 3 years ago
- PAGE_GUARD based hooking library☆38Updated 2 years ago
- This project will give you an example how you can hook a kernel vtable function that cannot be directly called☆78Updated 2 years ago
- ☆33Updated 2 years ago
- bypass to the p2c(s) that I have run over the past few months.☆51Updated last year
- Experiment with PAGE_GUARD protection to hide memory from other processes☆31Updated 2 months ago
- A proof of concept demonstrating communication via mapped shared memory structures between a user-mode process and a kernel-mode payload …☆73Updated 3 years ago
- ☆76Updated 3 years ago