Kernel mode windows NT API logger
☆22Sep 9, 2019Updated 6 years ago
Alternatives and similar repositories for xKeLogger
Users that are interested in xKeLogger are comparing it to the libraries listed below
Sorting:
- Execute an arbitrary command within the context of another process☆21Jun 28, 2019Updated 6 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆32Aug 7, 2019Updated 6 years ago
- WORK IN PROGRESS. RAT written in C++ using Win32 API☆19Sep 12, 2019Updated 6 years ago
- v1版完成对PE头,区段,输入表的解析☆11Apr 16, 2018Updated 7 years ago
- Zerokit shared code☆17Mar 28, 2019Updated 6 years ago
- An example of PE hollowing injection technique☆25Jun 28, 2019Updated 6 years ago
- Analysis and Modification Tool for Executables☆17Mar 28, 2019Updated 6 years ago
- May the POC be with you☆65Feb 21, 2026Updated last week
- simply manual map any system image☆18Feb 1, 2021Updated 5 years ago
- A driver that supports communication between a Windows guest and HyperWin☆15Jan 6, 2021Updated 5 years ago
- executing JS from x86 code☆27May 9, 2019Updated 6 years ago
- This is a project to receive Base64 data and decode it in process☆15Mar 16, 2020Updated 5 years ago
- a sandbox project by sudami��☆17Jul 31, 2018Updated 7 years ago
- Dump mapped PE files from memory to the disk☆20Jun 28, 2019Updated 6 years ago
- Some crazy PE executables protection kernel driver☆20May 2, 2020Updated 5 years ago
- A simple kernel mode driver that hooks some values at the KUSER_SHARED_DATA structure.☆27Jan 7, 2020Updated 6 years ago
- Features My internal isnt anything amazing it only has the basics. Spotted Esp 2D Boxes (with or without healthbar) Display player dista…☆17Aug 6, 2020Updated 5 years ago
- User-mode part of Zerokit platform☆22Mar 30, 2019Updated 6 years ago
- Map memory to user space and manipulate user memory, using capmon☆24Nov 3, 2018Updated 7 years ago
- Undocumented NsiAllocateAndGetTable usage in GetTcpTableInternal reverse engineered on Win7 X64☆20Apr 7, 2018Updated 7 years ago
- My articles for Paged Out! #2☆17Nov 20, 2019Updated 6 years ago
- hooking KiUserApcDispatcher☆27Apr 3, 2017Updated 8 years ago
- Window Executable file Function tracer using Debugging API☆44Sep 26, 2019Updated 6 years ago
- ☆65Nov 12, 2022Updated 3 years ago
- Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.☆24Jan 23, 2018Updated 8 years ago
- Detects if a Kernel mode debugger is active by reading the value of KUSER_SHARED_DATA.KdDebuggerEnabled. It is a high level and portable …☆23Sep 18, 2017Updated 8 years ago
- External cheat base with DirectX overlay☆20Jul 25, 2018Updated 7 years ago
- ☆29Jan 15, 2021Updated 5 years ago
- ☆21Jan 7, 2019Updated 7 years ago
- ☆11Apr 23, 2019Updated 6 years ago
- Various shellcodes☆12Sep 1, 2020Updated 5 years ago
- Kernel mode to user mode injector☆11Mar 31, 2020Updated 5 years ago
- 新的注入方式☆11Sep 30, 2018Updated 7 years ago
- NASM listing to shellcode converter☆14May 6, 2018Updated 7 years ago
- handle elevation using bedaisy.☆13Aug 17, 2020Updated 5 years ago
- OD反汇编引擎精简版,只适合x86系统,可嵌入驱动程序。☆10Mar 29, 2018Updated 7 years ago
- ☆15Mar 28, 2015Updated 10 years ago
- PoC code for CVE-2018-15499 (exploit race condition for BSoD)☆11Aug 23, 2018Updated 7 years ago
- just an lite AntiRootkit for interesting☆24Dec 9, 2015Updated 10 years ago