crvvdev / vac-bypass-kernel
Fully working kernel-mode VAC bypass
☆40Updated last month
Related projects ⓘ
Alternatives and complementary repositories for vac-bypass-kernel
- ☆57Updated 2 years ago
- WinApi Patcher is a straightforward tool leveraging windows API hooking to patch and modify certain behaviors in a targeted environment.☆40Updated 2 months ago
- ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel drive…☆46Updated last year
- silence file system monitoring components by hooking their minifilters☆51Updated 9 months ago
- Finding Truth in the Shadows☆84Updated last year
- A C++17 framework designed to enable obfuscation of constants, variables, and strings.☆26Updated last year
- Makes IDA (most versions) to crash upon opening it.☆64Updated 2 months ago
- A simple direct syscall wrapper written in C++ with compatibility for x86 and x64 programs.☆42Updated last year
- Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures☆30Updated 2 months ago
- Load dll with undocumented functions and debug symbols☆49Updated 4 months ago
- Compileable POC of namazso's x64 return address spoofer.☆47Updated 4 years ago
- DSE & PG bypass via BYOVD attack☆37Updated 7 months ago
- Report and exploit of CVE-2024-21305.☆30Updated 10 months ago
- An x64dbg plugin which helps make sense of long C++ symbols☆59Updated last year
- Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…☆106Updated last year
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆49Updated last year
- A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.☆28Updated 2 years ago
- A journal for $6,000 Riot Vanguard bounty.☆57Updated last year
- A VMWare logger using built-in backdoor.☆25Updated last month
- Detours implementation (x64/x86) which used only ntdll import☆88Updated 5 months ago
- Windows kernel driver template for cmkr and llvm-msvc.☆33Updated 11 months ago
- Me fockin' pe protector☆45Updated 2 years ago
- Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.☆24Updated 5 years ago
- kernel to user mode APC injector☆43Updated 2 years ago
- arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system☆53Updated 3 years ago
- PoC exploit for HP Hardware Diagnostic's EtdSupp driver☆50Updated last year
- ☆12Updated 2 years ago
- Improved VMP Idea(detect anti-anti-debug tools by bug)☆40Updated last year