Disks for DMA
☆141Apr 28, 2021Updated 4 years ago
Alternatives and similar repositories for ddma
Users that are interested in ddma are comparing it to the libraries listed below
Sorting:
- Easy Anti PatchGuard☆223Apr 9, 2021Updated 4 years ago
- An x64 page table iterator written in C++ as a kernel mode windows driver.☆119May 25, 2021Updated 4 years ago
- A PoC for requesting HWIDs directly from hardware, skipping any potential hooks or OS support.☆89Mar 16, 2021Updated 4 years ago
- UEFI bootkit for driver manual mapping☆586Jan 1, 2024Updated 2 years ago
- A simple x86_64 AMD-v hypervisor type-2 Programmed with C++, with soon to be added syscall hooks. [W.I.P]☆104Aug 3, 2023Updated 2 years ago
- Intercepting DeviceControl via WPP☆138Nov 18, 2019Updated 6 years ago
- Multicore x64 kernel with a focus on introspection and debugging capabilities.☆64Jun 27, 2024Updated last year
- ☆47Feb 27, 2022Updated 4 years ago
- ☆13Sep 25, 2023Updated 2 years ago
- Module extending manual mapper☆382Mar 28, 2020Updated 5 years ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆268Aug 31, 2022Updated 3 years ago
- Tool to dump UEFI runtime drivers implementing runtime services for Windows☆111Dec 24, 2020Updated 5 years ago
- Mapping your code on a 0x1000 size page☆71May 20, 2022Updated 3 years ago
- Manual mapper that uses PTE manipulation, Virtual Address Descriptor (VAD) manipulation, and forceful memory allocation to hide executabl…☆385Jan 29, 2022Updated 4 years ago
- ☆110Nov 13, 2023Updated 2 years ago
- ☆31Jan 12, 2022Updated 4 years ago
- Efi Driver Access is a simply project to load a driver during system boot with the idea to give the user kernel access for read/write mem…☆473Jan 8, 2023Updated 3 years ago
- Self-hosting binary instrumentation framework for security research☆12Apr 10, 2023Updated 2 years ago
- ☆47Jul 7, 2024Updated last year
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆121Feb 8, 2022Updated 4 years ago
- DLL scatter manual mapper☆811Apr 10, 2021Updated 4 years ago
- SimpleSvmHook is a research purpose hypervisor for Windows on AMD processors.☆464Feb 18, 2021Updated 5 years ago
- Code for Battleyes shellcode☆239Nov 11, 2021Updated 4 years ago
- 🪝 Various EPT hook detection approaches☆143Feb 22, 2026Updated last week
- 09/2021 reversal of EasyAntiCheat driver☆235Dec 21, 2021Updated 4 years ago
- Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.☆657Jan 28, 2025Updated last year
- Lightweight type-1 hypervisor offering a foundation for building advanced security-focused functionality.☆282Feb 16, 2026Updated last week
- HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate oper…☆376Jun 3, 2023Updated 2 years ago
- Kernel Lazy Importer☆134Apr 13, 2024Updated last year
- Analyze patches in a process☆259Jul 28, 2021Updated 4 years ago
- ☆53Oct 16, 2021Updated 4 years ago
- A lightweight BattlEye emulator of the launcher☆64Aug 27, 2022Updated 3 years ago
- A library to develop kernel level Windows payloads for post HVCI era☆485May 18, 2021Updated 4 years ago
- nmi stackwalking + module verification☆162Dec 28, 2023Updated 2 years ago
- Hide SMBIOS/disk/NIC serials from EFI bootkit☆324May 14, 2021Updated 4 years ago
- Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.☆902Nov 21, 2019Updated 6 years ago
- Detect removed thread from PspCidTable.☆75Mar 18, 2022Updated 3 years ago
- base for testing☆186Sep 28, 2024Updated last year
- Windows kernel drivers simple HTTP library for modern C++☆40Jul 12, 2018Updated 7 years ago