btbd / wppLinks
Intercepting DeviceControl via WPP
☆136Updated 5 years ago
Alternatives and similar repositories for wpp
Users that are interested in wpp are comparing it to the libraries listed below
Sorting:
- Disks for DMA☆116Updated 4 years ago
- An x64 page table iterator written in C++ as a kernel mode windows driver.☆114Updated 4 years ago
- ☆147Updated 4 years ago
- ☆153Updated 5 years ago
- A library to read physical memory and system-wide virtual memory.☆127Updated 7 years ago
- Communication via callback☆74Updated 5 years ago
- A PoC for requesting HWIDs directly from hardware, skipping any potential hooks or OS support.☆80Updated 4 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆117Updated 3 years ago
- Kernel driver that uses Shared memory to communicate with UserMode☆90Updated 6 years ago
- Enable SEH support for manual mapped x86-32bit PEs☆70Updated 6 years ago
- Discarded Section Manual Map☆68Updated 5 years ago
- ☆104Updated last year
- a more stable & secure read/write virtual memory for kernel mode drivers☆162Updated 5 years ago
- based on https://github.com/secrary/Hooking-via-InstrumentationCallback☆71Updated 5 years ago
- Disable Driver Callbacks☆104Updated 7 years ago
- manually map driver for a signed driver memory space☆160Updated 4 years ago
- Prototype of hijacking Windows driver dispatch routines in unmapped discardable sections☆55Updated 6 years ago
- x64 syscall caller in C++.☆93Updated 7 years ago
- reverse engineering of bedaisy.sys (battleyes kernel driver) - Aki2k/BEDaisy☆93Updated 5 years ago
- Some psuedo snippets from BattlEye's BEDaisy.sys loaded on Rainbow Six: Siege.☆127Updated 3 years ago
- Hooking kernel functions by abusing alignment☆245Updated 4 years ago
- Proof of concept on how to bypass some limitations of a manual mapped driver☆173Updated 4 years ago
- Windows Kernel Driver dlls injector using APC☆63Updated 7 years ago
- Kernel driver for detecting Intel VT-x hypervisors.☆193Updated 2 years ago
- Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.☆147Updated 3 years ago
- Easy Anti PatchGuard☆223Updated 4 years ago
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆96Updated 2 years ago
- just proof of concept. hooking MmCopyMemory PG safe.☆76Updated last year
- ☆73Updated 5 years ago
- Using DKOM to hide kernel mode drivers☆56Updated 7 years ago