Zer0Mem0ry / APIHook

Related projects: ⓘ

• nemesisqp / al-khaser
  Al-khaser is a PoC malware with good intentions that aimes to stress your malware analysis / sandbox environement
  ☆30Updated 10 years ago
• Zer0Mem0ry / WindowsNT-Handle-Scanner
  A simple program to scan for open handles in a process.
  ☆61Updated 7 years ago
• GayPig / driverless-basic-driver
  ☆75Updated this week
• D34Dspy / Simple-Mutation-Base
  This is a simple mutation engine. It does not have many features and you have to add actual mutation, when you want to use it - It does m…
  ☆32Updated 6 years ago
• zeroaceee / EDMapper
  A documented Windows x64 bit Usermode Injector that works via hooking IAT and hijacking its threads to execute shellcode.
  ☆62Updated last year
• SamLarenN / CallbackDisabler
  Disable Driver Callbacks
  ☆97Updated 6 years ago
• notscimmy / pplib
  Elevate a process to be a protected process
  ☆140Updated 5 years ago
• vmcall / battleye_emulation
  BattlEye BEClient<->BEService usermode emulator
  ☆79Updated 4 years ago
• johnsonjason / Remote-Thread-Executor
  Code injection by hijacking threads in Windows 32-bit applications
  ☆42Updated 5 years ago
• danielkrupinski / KernelProcessList
  Example Windows Kernel-mode Driver which enumerates running processes.
  ☆51Updated 2 years ago
• alxbrn / kernel-injector
  ☆59Updated this week
• tanduRE / AvastHV
  Hooking SSDT with Avast Internet Security Hypervisor
  ☆111Updated 5 years ago
• not-wlan / driver-hijack
  ☆150Updated 4 years ago
• kernelm0de / RunPE-ProcessHollowing
  ☆48Updated this week
• Synestraa / Highcall-Library
  usermode standalone kernel interface
  ☆110Updated 6 years ago
• mq1n / DLLThreadInjectionDetector
  ☆160Updated 7 years ago
• SLAUC91 / DLLHiding
  Hiding x32/x64 Modules/DLLs using PEB
  ☆64Updated 9 years ago
• vmcall / latebros
  x64 usermode rootkit
  ☆199Updated 6 years ago
• can1357 / safe_capcom
  Capcom wrapper with safety in mind.
  ☆77Updated 6 years ago
• tomLadder / WinLib
  Windows Manipulation Library (x64, User/Kernelmode)
  ☆74Updated 5 years ago
• nickcano / ReloadLibrary
  A quick-and-dirty anti-hook library proof of concept.
  ☆100Updated 6 years ago
• d366 / DarkMMap
  Manual PE image mapper
  ☆59Updated 11 years ago
• SamLarenN / SpeedFan-Exploit
  Abusing SpeedFan driver ability of physical memory manipulation
  ☆107Updated 6 years ago
• ATsahikian / pe-protector
  Pe-protector protects executable files.
  ☆50Updated 3 years ago
• Zer0Mem0ry / StandardInjection
  A simple Dll Injection demonstration
  ☆120Updated 7 years ago
• can1357 / physical_mem_controller
  A library to read physical memory and system-wide virtual memory.
  ☆119Updated 6 years ago
• vmcall / eye_mapper
  BattlEye x64 usermode injector
  ☆61Updated 5 years ago
• arielkoren / DisablePatchGuard
  disable most common windowsx64 systems patchguard
  ☆82Updated 5 years ago
• icewall / ForceDelete
  Windows driver including couple different techniques for file removal when regular operation isn't possible.
  ☆66Updated 8 years ago
• alxbrn / r6s-external-nuklear-hook
  ☆97Updated this week