alfarom256 / drivers_and_shitView external linksLinks
☆59Jun 8, 2022Updated 3 years ago
Alternatives and similar repositories for drivers_and_shit
Users that are interested in drivers_and_shit are comparing it to the libraries listed below
Sorting:
- Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address☆23Nov 22, 2021Updated 4 years ago
- Walks through the 4-level paging structures in Windows x64☆13Feb 12, 2023Updated 3 years ago
- ☆42Jul 1, 2022Updated 3 years ago
- A poc that abuses Enclave☆40Sep 8, 2022Updated 3 years ago
- ☆17Apr 21, 2022Updated 3 years ago
- Illustrates the concept of return address spoofing, and how it is used.☆14May 13, 2020Updated 5 years ago
- ☆70Aug 31, 2021Updated 4 years ago
- Mapping your code on a 0x1000 size page☆71May 20, 2022Updated 3 years ago
- ☆37May 21, 2022Updated 3 years ago
- Drawing from kernelmode without any hooks☆174Jul 7, 2022Updated 3 years ago
- base for testing☆186Sep 28, 2024Updated last year
- detect hypervisor with Nmi Callback☆42Sep 25, 2022Updated 3 years ago
- hooks gServerHandlers xxxEventWndProc☆13May 1, 2022Updated 3 years ago
- It stinks☆105Apr 22, 2022Updated 3 years ago
- Archive R/W into any protected process by changing the value of KTHREAD->PreviousMode☆163Jul 31, 2022Updated 3 years ago
- Old way for blocking NMI interrupts☆29Sep 6, 2022Updated 3 years ago
- A lightweight x86/x64 VM☆18Feb 7, 2021Updated 5 years ago
- Some drivers I've written while solving exercises from Practical Reverse Engineering☆15Jan 9, 2022Updated 4 years ago
- Hooking Heavens Gate in a weekend☆13Jan 1, 2022Updated 4 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆119Feb 8, 2022Updated 4 years ago
- A library for intel VT-x hypervisor functionality supporting EPT shadowing.☆51Mar 11, 2021Updated 4 years ago
- Lenovo Diagnostics Driver EoP - Arbitrary R/W☆177Dec 5, 2022Updated 3 years ago
- ☆18Mar 28, 2023Updated 2 years ago
- ☆27Jun 24, 2022Updated 3 years ago
- PE Header (.rdata,.data,.text) obsfucation☆36Feb 24, 2022Updated 3 years ago
- Simulate SendInput with ClassService☆35Sep 5, 2018Updated 7 years ago
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆159Apr 13, 2023Updated 2 years ago
- x86 PE Mutator�☆232Dec 24, 2022Updated 3 years ago
- ☆16Oct 31, 2022Updated 3 years ago
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆102Jun 26, 2023Updated 2 years ago
- ☆109Nov 13, 2023Updated 2 years ago
- A mapper that maps shellcode into loaded large page drivers☆318Apr 26, 2022Updated 3 years ago
- A simple way to spoof return addresses using an exception handler☆43Aug 3, 2022Updated 3 years ago
- ☆73Aug 31, 2022Updated 3 years ago
- Interprocess communication via a covert timing channel☆26Oct 24, 2025Updated 3 months ago
- Kernel driver for detecting Intel VT-x hypervisors.☆192Jul 11, 2023Updated 2 years ago
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆247Jul 5, 2022Updated 3 years ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆265Aug 31, 2022Updated 3 years ago
- Advanced driver monitoring utility.☆218Jul 13, 2022Updated 3 years ago