WHots / RosaryAVLinks
Lightweight Threat Detection System - (Base)
☆15Updated last year
Alternatives and similar repositories for RosaryAV
Users that are interested in RosaryAV are comparing it to the libraries listed below
Sorting:
- Hooking Heavens Gate in a weekend☆13Updated 3 years ago
- An example of how to use Microsoft Windows Warbird technology☆28Updated 2 years ago
- A C/C++/Asm template for PIC malware☆10Updated 8 months ago
- A VMWare logger using built-in backdoor.☆29Updated 7 months ago
- ☆20Updated 2 years ago
- WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API☆22Updated 3 years ago
- UEFI bootkit: Hardware Implant. In-Progress☆15Updated 3 years ago
- ☆14Updated last year
- ☆20Updated 4 months ago
- using the Recycle Bin to insure persistence☆12Updated 2 years ago
- A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.☆29Updated 2 years ago
- A native Windows library for intercepting kernel-to-user transitions using instrumentation callbacks☆20Updated last year
- XOrCryptEx lightweight C Utility/Algorithm☆11Updated 3 years ago
- Bypassing kernel patch protection runtime☆20Updated 2 years ago
- Report and exploit of CVE-2024-21305.☆34Updated last year
- Tiny driver patch to allow kernel callbacks to work on Win10 21h1☆34Updated 3 years ago
- Enumerate Callbacks and all Object Types☆13Updated 2 years ago
- SoulExtraction is a windows driver library for extracting cert information in windows drivers☆24Updated 2 years ago
- Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures☆34Updated 8 months ago
- An attempt at reversing WindowsDefender☆20Updated 7 months ago
- ☆10Updated 3 years ago
- A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using Instrumentation…☆31Updated last year
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆55Updated 2 years ago
- Exploit for eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W☆34Updated last month
- Here you can find some vulnerable Windows Kernel Drivers☆14Updated 3 months ago
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆26Updated last year
- Shadow Rebirth - An Aggressive Outbreak Anti-Debugging Technique☆11Updated 6 months ago
- ☆59Updated 2 years ago
- really ?☆12Updated last year
- A Practical example of ELAM (Early Launch Anti-Malware)☆33Updated 3 years ago