baiyfcu / DriverNoImageLinks
以shellcode注入其它驱动执行,躲避驱动签名检测,曾pubg项目中使用,,,当然现在,,,
☆26Updated 2 years ago
Alternatives and similar repositories for DriverNoImage
Users that are interested in DriverNoImage are comparing it to the libraries listed below
Sorting:
- Hook NtDeviceIoControlFile with PatchGuard☆106Updated 3 years ago
- 过TP驱动☆29Updated 5 years ago
- sc4cpp is a shellcode framework based on C++☆90Updated 3 years ago
- 自写驱动内存注入☆27Updated 4 years ago
- VT Hook☆46Updated 11 months ago
- ☆27Updated 2 years ago
- 内存加载DLL 支持X86和X64(Memory PELoader Support X86 and X64)�☆33Updated last year
- Wow64 Heaven's Gate Hook☆28Updated 3 years ago
- intel vt-x hypervisor ept☆25Updated 5 years ago
- ☆52Updated 2 years ago
- The modifyed cjson that can running on windows kernel☆14Updated 2 years ago
- ☆68Updated 3 years ago
- UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.☆44Updated 2 years ago
- Windows kernel drivers simple HTTP library for modern C++☆42Updated 6 years ago
- manual mapping injector☆27Updated 3 years ago
- direct systemcalls with a modern c++20 interface.☆43Updated 2 years ago
- APC注入DLL内核层☆24Updated 6 years ago
- ☆27Updated last year
- https://key08.com/index.php/2021/10/19/1375.html☆67Updated 3 years ago
- A collection of cpuid instruction implementations for anti-vm purposes.☆11Updated last year
- What makes it page☆16Updated 2 years ago
- 不使用3环挂钩进行DWM桌面绘制☆80Updated 3 years ago
- neat way to detect memory read using nt layer function.☆14Updated last year
- Call NtCreateUserProcess directly as normal.☆71Updated 3 years ago
- Anti-Analysis technique, trick the debugger by Hiding events from it.☆19Updated 3 years ago
- 基于Intel-VT技术的windows内核增强型驱动☆29Updated 2 years ago
- 利用物理内存映射,实现虚拟内存的伪隐藏☆83Updated 2 years ago
- ☆16Updated 3 years ago
- Dynamically generated obfuscated jumps and/or function calls☆35Updated 2 years ago
- ☆13Updated 2 years ago