This is a demo project to illustrate the way to verify and restore original SST in case of some malware hooks
☆33Mar 2, 2017Updated 9 years ago
Alternatives and similar repositories for Simple-Antirootkit-SST-Unhooker
Users that are interested in Simple-Antirootkit-SST-Unhooker are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers☆34Mar 13, 2017Updated 9 years ago
- ☆17Mar 3, 2016Updated 10 years ago
- A system call tracer☆10Sep 22, 2014Updated 11 years ago
- Hidden monitoring and blocking Android apps☆10May 2, 2017Updated 8 years ago
- Demos presented on Hackerfest 2015☆14Nov 9, 2015Updated 10 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- ☆12Feb 19, 2017Updated 9 years ago
- Final Transparent encrypted version☆14Jan 10, 2017Updated 9 years ago
- WinPCAP for NDIS 6.x☆14Jun 24, 2019Updated 6 years ago
- pass game protect☆12Apr 26, 2014Updated 11 years ago
- a network filter using NDIS hook technique☆19Mar 28, 2013Updated 12 years ago
- use crystalCPUID to identify vt-x & amd-v☆17Apr 8, 2015Updated 10 years ago
- Hidden module/dll detector for windows apps☆15May 21, 2017Updated 8 years ago
- Hook IDT vector 0xb2 to detect SCI in 64bit windows.☆34Aug 27, 2022Updated 3 years ago
- Minifilter Driver☆15Feb 10, 2017Updated 9 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- Confirms the capability of Hardware-Accelerated Virtualization Technology.☆10Feb 26, 2026Updated last month
- Protect process fsfilter driver. Windows x64☆36Apr 11, 2016Updated 9 years ago
- Windows PE file debugger☆11Aug 30, 2017Updated 8 years ago
- copy of tdifw lib☆10Jun 15, 2017Updated 8 years ago
- A powerful library for inline-hook,lock,compress etc,and it is useful for anti-virus software.☆17Oct 1, 2020Updated 5 years ago
- ☆15Jul 22, 2024Updated last year
- Hyper-V virtual switch packet capturing extension with libpcap / Wireshark format☆13Jun 3, 2014Updated 11 years ago
- A remote desktop control suite☆16Jun 28, 2014Updated 11 years ago
- Windows过滤驱动-helloworld☆24Aug 27, 2015Updated 10 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Windows device tree walker☆15Sep 19, 2018Updated 7 years ago
- windows net program☆13Oct 16, 2014Updated 11 years ago
- PoC code for CVE-2018-15499 (exploit race condition for BSoD)☆11Aug 23, 2018Updated 7 years ago
- Block process execute kernel driver for Windows x64☆19Apr 7, 2016Updated 9 years ago
- RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the …☆10Jul 1, 2015Updated 10 years ago
- Formely KMon, a Windows Kernel Driver designed to prevent malware attacks by monitoring the creation of registry keys in common autorun l…☆21Feb 15, 2014Updated 12 years ago
- spy windows ce API calls☆11Jun 3, 2014Updated 11 years ago
- Event Tracing for Windows Custom Events☆21Jan 28, 2015Updated 11 years ago
- An aggregate of tools used in the core of vmp_dbg plus other parsing utils to parse vmp bc.☆16Oct 18, 2016Updated 9 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆23May 31, 2017Updated 8 years ago
- Lists work items being queued currently.☆15Jun 7, 2015Updated 10 years ago
- Sysark全称system anti-rootkit,是我学习内核写的工具(2013年的代码,后续不会再更新),里面基本上所有的功能都是用内核实现的。这里只是实现了反rootkit部分功能,作为工具的话,本人觉得还欠完善,但作为学习,或有人需要。目前针对的是XP SP2,…☆27Dec 26, 2017Updated 8 years ago
- Windows 64-bits driver☆17Dec 1, 2017Updated 8 years ago
- HAXM hypervisor client☆18Nov 30, 2018Updated 7 years ago
- Memory management is one of the most important parts of the operating system. KSM (Kernel Samepage Merging) in Linux kernel is a kind of…☆13Apr 8, 2018Updated 7 years ago
- an efficient yet easy to use network packet builder and parser☆11Jul 3, 2017Updated 8 years ago