Kernel LdrLoadDll injector
☆264Oct 6, 2018Updated 7 years ago
Alternatives and similar repositories for KeInject
Users that are interested in KeInject are comparing it to the libraries listed below
Sorting:
- Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module☆421Sep 9, 2018Updated 7 years ago
- Kernel Inject DLL☆352Mar 21, 2023Updated 3 years ago
- a more stable & secure read/write virtual memory for kernel mode drivers☆161Mar 8, 2020Updated 6 years ago
- System call hook for Windows 10 20H1☆496Jun 26, 2021Updated 4 years ago
- Using Driver Global Injection dll, it can hide DLL modules☆537Jun 28, 2019Updated 6 years ago
- Manual mapper that uses PTE manipulation, Virtual Address Descriptor (VAD) manipulation, and forceful memory allocation to hide executabl…☆387Jan 29, 2022Updated 4 years ago
- Driver that uses network sockets to communicate with client and read/ write protected process memory.☆625Feb 22, 2019Updated 7 years ago
- proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC☆1,274May 1, 2024Updated last year
- The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.☆346Apr 27, 2020Updated 5 years ago
- Manual mapping without creating any threads, with rw only access☆808Oct 29, 2019Updated 6 years ago
- A x64 Windows Rootkit using SSDT or Hypervisor hook☆566Jan 4, 2025Updated last year
- A more stealthy variant of "DLL hollowing"☆363Mar 8, 2024Updated 2 years ago
- ☆185May 5, 2019Updated 6 years ago
- Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.☆905Nov 21, 2019Updated 6 years ago
- Remote memory library in C++17.☆34May 31, 2018Updated 7 years ago
- KSOCKET provides a very basic example how to make a network connections in the Windows Driver by using WSK☆541Sep 2, 2022Updated 3 years ago
- Kernel driver that .text hooks a syscall in dxgkrnl.sys which can be called from our user-mode client to send instructions like rpm/wpm a…☆213Dec 16, 2022Updated 3 years ago
- Load your driver like win32k.sys☆258Aug 20, 2022Updated 3 years ago
- Kernel driver that uses Shared memory to communicate with UserMode☆86Apr 25, 2019Updated 6 years ago
- Detours with just single dependency - NTDLL☆674Nov 25, 2025Updated 3 months ago
- The functions interception library written on pure C and NativeAPI with UserMode and KernelMode support☆763Apr 24, 2025Updated 10 months ago
- Hook system calls on Windows by using Kaspersky's hypervisor☆1,285Feb 14, 2026Updated last month
- Windows Kernel inject (no module no thread)☆282Nov 11, 2022Updated 3 years ago
- C++ graphics kernel subsystem hook☆562Jan 11, 2021Updated 5 years ago
- Rendering on external windows via hijacking thread contexts☆406Jun 28, 2020Updated 5 years ago
- ☆158May 21, 2024Updated last year
- Kernel DLL Injector using NX Bit Swapping and VAD hide for hiding injected DLL☆219Nov 12, 2020Updated 5 years ago
- Windows inline hooking tool.☆298Oct 7, 2018Updated 7 years ago
- x64 syscall caller in C++.☆93Jun 23, 2018Updated 7 years ago
- Hooking kernel functions by abusing alignment☆249Jan 5, 2021Updated 5 years ago
- Stealthy UM <-> KM communication system without creating any system threads, permanent hooks, driver objects, section objects or device o…☆382Mar 15, 2024Updated 2 years ago
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆159Updated this week
- Kernel cheat with kernel hook for communication☆294Jul 24, 2021Updated 4 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆241Nov 6, 2019Updated 6 years ago
- C++17 PE manualmapper☆442Oct 2, 2021Updated 4 years ago
- Inline syscalls made easy for windows on clang☆736Jun 21, 2024Updated last year
- Kernel mode bypass for BattlEye, EAC☆189Oct 25, 2023Updated 2 years ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆393Jul 6, 2022Updated 3 years ago
- Reversing EasyAntiCheat.☆588Apr 19, 2019Updated 6 years ago