Hook system calls on Windows by using Kaspersky's hypervisor
☆17Dec 25, 2024Updated last year
Alternatives and similar repositories for KasperskyHook
Users that are interested in KasperskyHook are comparing it to the libraries listed below
Sorting:
- Simple Assault cube external hack written in C☆13Apr 26, 2021Updated 4 years ago
- Simple C# malware that steals Discord token from .ldb files and from memory☆61Oct 27, 2021Updated 4 years ago
- abusing Process Hacker driver to terminate other processes (BYOVD)☆82May 23, 2023Updated 2 years ago
- Loads NTDLL, parses the PE file, extracts "Zw" functions, retrieves their System Service Numbers (SSNs), and prints each function’s name,…☆15Apr 21, 2025Updated 11 months ago
- ☆21Jan 8, 2026Updated 2 months ago
- PhantomDelay is a precise delay function that uses the Windows high resolution performance counter to pause your program for a specified …☆19May 8, 2025Updated 10 months ago
- Whenever PowerShell is launched, Notepad will also open. You can customize the script for educational purposes, but I emphasize that I do…☆12Apr 21, 2025Updated 11 months ago
- APT38 Tactic PoC for Stealing 0days from security researchers☆325May 30, 2025Updated 9 months ago
- Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…☆26Apr 21, 2025Updated 11 months ago
- Pattern-based AMSI bypass that patches AMSI.dll in memory by modifying comparison values, conditional jumps, and function prologues to ne…☆28May 13, 2025Updated 10 months ago
- Cleny is An Interpreted Coding Language Used To Facilitate UI Structuring And Styling For CLI Based Projects☆108Dec 30, 2022Updated 3 years ago
- Simple x86 Trampoline Hook☆44Aug 3, 2022Updated 3 years ago
- golang decryption poc of the new app bound encryption introduced in chrome version 127.☆22Nov 4, 2024Updated last year
- kASLR bypass technique on Intel CPUs.☆32May 18, 2025Updated 10 months ago
- A C ransomware(educational only)☆22Feb 3, 2022Updated 4 years ago
- Yet another shellcode loader - but a sneaky one☆25Apr 16, 2025Updated 11 months ago
- Compact MBR Bootkit for Windows☆55Jan 13, 2022Updated 4 years ago
- Bypassing Major EDR's with staged shellcode, custom getmodulehandleW and getprocaddress, veh syscalls & more.☆26Apr 21, 2025Updated 11 months ago
- Trolling Keyloggers by Forcing them to log Specific Text then freezing them☆22Jul 30, 2022Updated 3 years ago
- Bypass Malware Sandbox Evasion Ram check☆141Jan 3, 2023Updated 3 years ago
- Plantronics Desktop Hub LPE☆37May 15, 2024Updated last year
- Ransomware written in go, encrypt - decrypt.☆30Apr 27, 2025Updated 10 months ago
- Send arp packet using rust libpnet☆10Apr 24, 2017Updated 8 years ago
- Reduce Dynamic Analysis Detection Rates With Built-In Unhooker, Anti Analysis Techniques, And String Obfuscator Modules.☆21Dec 21, 2022Updated 3 years ago
- A PoC for requesting HWIDs directly from hardware, skipping any potential hooks or OS support.☆89Mar 16, 2021Updated 5 years ago
- Listing UDP connections with remote address without sniffing.☆31Sep 26, 2023Updated 2 years ago
- Ray-casting game for wasting productive time.☆11May 23, 2021Updated 4 years ago
- extract chromium-based browser's cookies using chrome's remote debugging without admin rights☆22Nov 3, 2024Updated last year
- Two C# RunPE's capable of x86 and x64 injections☆11Dec 2, 2018Updated 7 years ago
- dx9 logger imgui hack☆23Jan 27, 2021Updated 5 years ago
- Decrypt Matrix42 Empirum /EIS Passwords☆14Mar 31, 2021Updated 4 years ago
- Terminate AV/EDR processes by exploiting the vulnerable NsecSoft driver☆33Sep 15, 2025Updated 6 months ago
- Shellcode execution via x86 inline assembly based on MSVC syntax☆17Apr 26, 2023Updated 2 years ago
- Test data for x86 instructions☆13Apr 13, 2021Updated 4 years ago
- This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.☆95Apr 27, 2025Updated 10 months ago
- penetration testing utilities☆10Mar 30, 2021Updated 4 years ago
- ☆31Aug 23, 2020Updated 5 years ago
- a demo module for the kaine agent to execute and inject assembly modules☆41Aug 28, 2024Updated last year
- CPUID database derived from InstLatx64☆15Feb 1, 2020Updated 6 years ago