Ynob2000 / MappedCallback
Register a callback in Kernel from a manually mapped driver
☆40Updated 3 years ago
Alternatives and similar repositories for MappedCallback:
Users that are interested in MappedCallback are comparing it to the libraries listed below
- ☆68Updated 2 years ago
- Hiding a system thread against conventional means of detection☆39Updated 4 years ago
- Mapping your code on a 0x1000 size page☆72Updated 2 years ago
- 将驱动映射到会话空间☆34Updated 2 years ago
- UM-KM Communication using registry callbacks☆39Updated 4 years ago
- POC Hook of nt!HvcallCodeVa☆51Updated last year
- ☆30Updated 2 years ago
- Discarded Section Manual Map☆67Updated 4 years ago
- ☆25Updated last year
- PsSetCreateProcessNotifyRoutine bypass proof-of-concept for manual mapped drivers☆31Updated 3 years ago
- Windows Kernel nt files - To research windows kernel☆15Updated 4 years ago
- clearing traces of a loaded driver☆47Updated 2 years ago
- ☆26Updated last year
- ☆42Updated 3 years ago
- ☆49Updated last year
- ☆48Updated 3 years ago
- ☆34Updated 2 years ago
- ☆46Updated 4 years ago
- ☆46Updated 3 years ago
- ☆29Updated 6 months ago
- Handling C++ & __try exceptions without the need of built-in handlers.☆70Updated 3 years ago
- A method to Disable DSE using .data ptr hooks☆29Updated last year
- Expanding Kernel Lazy Importer☆31Updated 2 years ago
- A minimalistic way to spoof return addresses without using exceptions☆14Updated 2 years ago
- ☆52Updated 2 years ago
- Windows Kernel Misc☆23Updated last year
- Old way for blocking NMI interrupts☆26Updated 2 years ago
- page table manipulation to gain physical r/w☆40Updated 11 months ago
- A library to assist with memory & code protection.☆55Updated last year
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆83Updated last year