XShar / Windows_Kernel_ProgrammingLinks
Windows Kernel Programming (Обзорный перевод книги)
☆58Updated 4 years ago
Alternatives and similar repositories for Windows_Kernel_Programming
Users that are interested in Windows_Kernel_Programming are comparing it to the libraries listed below
Sorting:
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆60Updated 6 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆106Updated 5 years ago
- Obfuscate calls to imports by patching in stubs☆69Updated 3 years ago
- LSASS INJECTOR☆35Updated 6 years ago
- Скрытие строки от отладчиков и декомпиляторов☆50Updated 5 years ago
- fix vmprotect import function used unicorn-engine.☆93Updated 2 years ago
- This utility allows you to lock every available memory regions of an arbitrary process into its working set.☆68Updated 2 years ago
- Скрытие Win API☆26Updated 5 years ago
- Rootkit & Anti-rootkit☆39Updated last year
- virtualization obfuscator inspired by juhajong/vm-obfuscator☆57Updated 5 years ago
- Resolve DOS MZ executable symbols at runtime☆95Updated 3 years ago
- This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness☆52Updated 5 years ago
- win10 pgContext dynamic dump (btc version)☆106Updated 5 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆78Updated 14 years ago
- PoC for hiding PE exports☆67Updated 4 years ago
- IA32-doc is a project which aims to put as many definitions from the Intel Manual into machine-processable format as possible☆16Updated 3 years ago
- A simple program to obfuscate code written in cpp.☆49Updated last year
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆72Updated last year
- All Nt Syscall and W32k Syscall in one asm, include, and call it!☆58Updated 3 years ago
- arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system☆57Updated 3 years ago
- Using SetWindowHookEx for preinjected DLL's☆58Updated 2 years ago
- A dynamic VMP dumper and import fixer, powered by VTIL.☆42Updated 4 years ago
- vdk is a set of utilities used to help with exploitation of a vulnerable driver.☆40Updated 3 years ago
- Example of hijacking system calls via function pointer tables☆31Updated 4 years ago
- x64 syscall caller in C++.☆90Updated 7 years ago
- File system minifilter driver for Windows to block symbolic link attacks.☆51Updated 4 years ago
- A library for intel VT-x hypervisor functionality supporting EPT shadowing.☆50Updated 4 years ago
- UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.☆44Updated 2 years ago
- ☆20Updated 8 years ago
- An automatic tool for fixing dumped PE files☆41Updated 4 years ago