cocafe / physmem
Physical memory and MMIO read/write command line utility via asmmap64 on Windows
☆16Updated 2 years ago
Alternatives and similar repositories for physmem
Users that are interested in physmem are comparing it to the libraries listed below
Sorting:
- Example of using Windows Platform Binary Table (WPBT)☆20Updated last year
- Windows Research Kernel VS2022 Solution☆30Updated 8 months ago
- Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.☆29Updated 2 years ago
- Custom KiSystemStartup, can be used to modificate kernel before boot.☆52Updated 3 years ago
- Use ntdll/ntoskrnl to implement Kernel32, Advapi32 and other APIs. It includes user-mode and kernel-mode.☆82Updated last month
- Unicorn Engine port for UEFI firmware☆44Updated last month
- This is a POC Test project for INTEL CPUs on blocking NMI Entries through the IDT Handler.☆50Updated 7 months ago
- https://www.codeproject.com/Articles/5348168/Disable-Driver-Signature-Enforcement-with-DSE-Patc☆17Updated last year
- Labyrinth, an LLVM obfuscation plugin for the New Pass Manager☆40Updated 2 months ago
- ☆22Updated last year
- Native API header files for the Process Hacker project (nightly).☆26Updated this week
- Lightweight x86-64 disassembling library☆41Updated 2 years ago
- A poc that abuses Enclave☆38Updated 2 years ago
- ☆47Updated 4 years ago
- A simple way to spoof return addresses using an exception handler☆31Updated 2 years ago
- Collection of Cheat dumps for Research and Detection.☆13Updated this week
- CMake template for a basic EFI application/bootkit. This library is header-only, there is no EDK2 runtime!).☆77Updated 2 years ago
- Research on obfuscated licensing APIs / CLIP service in the Windows kernel☆111Updated 2 years ago
- The simple UEFI application to create a Windows Platform Binary Table (WPBT) from the UEFI shell.☆110Updated 3 years ago
- x64 Windows implementation of virtual-address to physical-address translation☆42Updated 3 years ago
- Visual Studio Project example for using Microsoft's STL in WDM (Windows Kernel-mode Driver)☆25Updated 3 years ago
- An improved Detours.☆65Updated 2 weeks ago
- Using MMIO (Memory-Mapped I/O) to read TPM 2.0 public Endorsement Key.☆40Updated 11 months ago
- Port of zentool to Windows☆24Updated 2 months ago
- Virtualization Simply Code☆22Updated 3 years ago
- ntos shit☆24Updated last year
- Emulate Drivers in RING3 with self context mapping or unicorn☆29Updated 4 months ago
- detect hypervisor with Nmi Callback☆34Updated 2 years ago
- Take back control of Windows Code Integrity, no exploits or patching required! Requires that you control your own Platform Key (PK).☆44Updated 2 years ago
- research revolving the windows filtering platform callout mechanism☆32Updated 11 months ago