baiyfcu / DriverNoImage
以shellcode注入其它驱动执行,躲避驱动签名检测,曾pubg项目中使用,,,当然现在,,,
☆27Updated 2 years ago
Alternatives and similar repositories for DriverNoImage:
Users that are interested in DriverNoImage are comparing it to the libraries listed below
- 过TP驱动☆29Updated 5 years ago
- 自写驱动内存注入☆25Updated 3 years ago
- EtwHook for win7-win11;☆22Updated 2 years ago
- VT Hook☆46Updated 7 months ago
- The modifyed cjson that can running on windows kernel☆14Updated last year
- 内存加载DLL 支持X86和X64(Memory PELoader Support X86 and X64)☆31Updated last year
- ☆27Updated last year
- manual mapping injector☆28Updated 2 years ago
- What makes it page☆17Updated 2 years ago
- Protected Process Light Library☆18Updated 4 years ago
- neat way to detect memory read using nt layer function.☆14Updated last year
- Kernel Hook X64☆21Updated 4 years ago
- ☆53Updated 2 years ago
- Hook NtDeviceIoControlFile with PatchGuard☆103Updated 2 years ago
- MdlReadWriteProcess MDL读写进程数据☆9Updated 4 years ago
- intel vt-x hypervisor ept☆25Updated 4 years ago
- direct systemcalls with a modern c++20 interface.☆42Updated 2 years ago
- VT调试器插件搭配的CE☆21Updated 2 years ago
- UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.☆44Updated 2 years ago
- ☆27Updated 2 years ago
- 不使用3环挂钩进行DWM桌面绘制☆79Updated 3 years ago
- Wow64 Heaven's Gate Hook☆28Updated 3 years ago
- ☆12Updated 2 years ago
- https://githacks.org/Shawick/goodeye.git☆46Updated 4 years ago
- ☆26Updated 7 years ago
- Free(or force?)file and delete it☆12Updated 5 years ago
- 以前改进的cheat内核通信模块,现在EAC Detected,现在发出来☆52Updated 3 years ago
- 利用物理内存映射,实现虚拟内存的伪隐藏☆81Updated 2 years ago
- Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address☆24Updated 3 years ago
- ☆68Updated 2 years ago