Ynob2000 / MappedCallbackLinks
Register a callback in Kernel from a manually mapped driver
☆42Updated 4 years ago
Alternatives and similar repositories for MappedCallback
Users that are interested in MappedCallback are comparing it to the libraries listed below
Sorting:
- UM-KM Communication using registry callbacks☆40Updated 5 years ago
- 将驱动映射到会话空间☆36Updated 3 years ago
- ☆72Updated 3 years ago
- Mapping your code on a 0x1000 size page☆72Updated 3 years ago
- Discarded Section Manual Map☆67Updated 5 years ago
- ☆35Updated 3 years ago
- Hiding a system thread against conventional means of detection☆40Updated 5 years ago
- ☆62Updated 3 years ago
- Detect removed thread from PspCidTable.☆74Updated 3 years ago
- Old way for blocking NMI interrupts☆28Updated 3 years ago
- PsSetCreateProcessNotifyRoutine bypass proof-of-concept for manual mapped drivers☆32Updated 4 years ago
- ☆27Updated 2 years ago
- ☆48Updated 3 years ago
- Bypassing EasyAntiCheat.sys self-integrity by abusing call hierarchy☆82Updated 3 years ago
- A wrapper class to hide the original calling address of a function☆55Updated 5 years ago
- clearing traces of a loaded driver☆47Updated 3 years ago
- ☆49Updated 4 years ago
- Handling C++ & __try exceptions without the need of built-in handlers.☆73Updated 4 years ago
- ☆25Updated 2 years ago
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆97Updated 2 years ago
- detect hypervisor with Nmi Callback☆40Updated 3 years ago
- ☆34Updated 5 years ago
- ☆12Updated 2 years ago
- A minimalistic way to spoof return addresses without using exceptions☆17Updated 3 years ago
- search for a driver/dll module that has a wanted section bigger than the size of your image☆20Updated 4 years ago
- ☆68Updated 4 years ago
- ☆47Updated 3 years ago
- POC Hook of nt!HvcallCodeVa☆53Updated 2 years ago
- ☆22Updated 3 years ago
- POC usermode <=> kernel communication via ALPC.☆64Updated last year