adrianyy / x64-syscallLinks
x64 syscall caller in C++.
☆90Updated 7 years ago
Alternatives and similar repositories for x64-syscall
Users that are interested in x64-syscall are comparing it to the libraries listed below
Sorting:
- Obfuscate calls to imports by patching in stubs☆69Updated 3 years ago
- Intercepting DeviceControl via WPP☆134Updated 5 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆113Updated 3 years ago
- reverse engineering of bedaisy.sys (battleyes kernel driver) - Aki2k/BEDaisy☆84Updated 4 years ago
- Handling C++ & __try exceptions without the need of built-in handlers.☆71Updated 3 years ago
- Communication via callback☆73Updated 5 years ago
- based on https://github.com/secrary/Hooking-via-InstrumentationCallback☆71Updated 5 years ago
- Manual PE image mapper☆65Updated 11 years ago
- Discarded Section Manual Map☆68Updated 5 years ago
- x64 manual mapper using inline syscalls☆9Updated 3 years ago
- C++ library for parsing and manipulating PE files statically and dynamically.☆88Updated last year
- A mini anti-anti debug hooking library for Windows.☆107Updated 4 years ago
- Disable Driver Callbacks☆105Updated 7 years ago
- A PoC for requesting HWIDs directly from hardware, skipping any potential hooks or OS support.☆80Updated 4 years ago
- Enable SEH support for manual mapped x86-32bit PEs☆67Updated 6 years ago
- Some psuedo snippets from BattlEye's BEDaisy.sys loaded on Rainbow Six: Siege.☆124Updated 3 years ago
- ☆68Updated 4 years ago
- Some usefull info when reverse engineering Kernel Mode Anti-Cheat☆71Updated 2 years ago
- An x64 page table iterator written in C++ as a kernel mode windows driver.☆112Updated 4 years ago
- A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe☆71Updated last year
- ☆80Updated 3 years ago
- Disks for DMA☆104Updated 4 years ago
- PAGE_GUARD based hooking library☆46Updated 2 years ago
- Kernel driver that uses Shared memory to communicate with UserMode☆85Updated 6 years ago
- A documented Windows x64 bit Usermode Injector that works via hooking IAT and hijacking its threads to execute shellcode.☆65Updated last year
- Capcom wrapper with safety in mind.☆80Updated 7 years ago
- This project will give you an example how you can hook a kernel vtable function that cannot be directly called☆82Updated 3 years ago
- Example Windows Kernel-mode Driver which enumerates running processes.☆56Updated 2 years ago
- Prototype of hijacking Windows driver dispatch routines in unmapped discardable sections☆54Updated 6 years ago
- ☆153Updated 5 years ago