allogic / KDBGLinks
The windows kernel debugger consists of two parts, KMOD which is the kernel driver handling ring3 request and KCLI, the command line interface for the driver. It originated due to insufficient useability with CheatEngine's DBVM driver while debugging games running under certain AntiCheat software.
☆99Updated 3 years ago
Alternatives and similar repositories for KDBG
Users that are interested in KDBG are comparing it to the libraries listed below
Sorting:
- Kernel driver that uses Shared memory to communicate with UserMode☆89Updated 6 years ago
- Some psuedo snippets from BattlEye's BEDaisy.sys loaded on Rainbow Six: Siege.☆125Updated 3 years ago
- ☆68Updated 4 years ago
- This project will give you an example how you can hook a kernel vtable function that cannot be directly called☆83Updated 3 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆117Updated 3 years ago
- Reverse Engineering a signed kernel driver packed and virtualized with VMProtect 3.6☆105Updated 2 years ago
- Windows X64 mode use seh in manual mapped dll or manual mapped sys☆73Updated 2 years ago
- Bypassing EasyAntiCheat.sys self-integrity by abusing call hierarchy☆82Updated 2 years ago
- ☆81Updated 4 years ago
- PointerGuard is a proof-of-concept tool used to create 'guarded' pointers which disguise pointer addresses, monitor reads/writes, and pre…☆53Updated 3 years ago
- reverse engineering of bedaisy.sys (battleyes kernel driver) - Aki2k/BEDaisy☆93Updated 5 years ago
- ☆101Updated last year
- Handling C++ & __try exceptions without the need of built-in handlers.☆72Updated 4 years ago
- Using ReadDirectoryChangesW to detect CheatEngine☆50Updated 3 years ago
- Top level overlay drawing for game cheating using dwm.exe☆44Updated 3 years ago
- Scans all modules in target process for jmp/int3 hooks dissassembles then and follows jmps to destination.☆80Updated last year
- Example driver on how to use SKLib☆56Updated 9 months ago
- noob hooking dwm for overlay☆82Updated 4 years ago
- ☆48Updated 3 years ago
- just proof of concept. hooking MmCopyMemory PG safe.☆78Updated last year
- ☆46Updated 3 years ago
- ☆137Updated 2 years ago
- ☆22Updated 3 years ago
- InfinityHookProMax: Make InfinityHook great great again☆46Updated 2 years ago
- Kernel-based memory hacking framework communicating with a kernel driver via sockets.☆94Updated 4 years ago
- An x64 page table iterator written in C++ as a kernel mode windows driver.☆112Updated 4 years ago
- A PoC for requesting HWIDs directly from hardware, skipping any potential hooks or OS support.☆80Updated 4 years ago
- Easy Anti PatchGuard☆223Updated 4 years ago
- ☆72Updated 3 years ago
- Static user/kernel mode library that allows access to all functions and global variables by extracting offsets from the PDB☆103Updated 3 months ago