d35ha / xObfLinks
Simple x86/x86_64 instruction level obfuscator based on a basic SBI engine
☆274Updated 2 years ago
Alternatives and similar repositories for xObf
Users that are interested in xObf are comparing it to the libraries listed below
Sorting:
- x86 PE Mutator☆226Updated 2 years ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆359Updated 3 years ago
- Browse Page Tables on Windows (Page Table Viewer)☆216Updated 3 years ago
- Analyze patches in a process☆257Updated 4 years ago
- Load your driver like win32k.sys☆256Updated 3 years ago
- Native code virtualizer for x64 binaries☆502Updated 10 months ago
- Debugger Anti-Detection Benchmark☆368Updated 2 months ago
- x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code☆206Updated 4 years ago
- Windows inline hooking tool.☆290Updated 7 years ago
- An x86-64 Code Virtualizer☆285Updated last year
- Demo proof of concept for shadow regions, and implementation of HyperDeceit.☆300Updated 2 years ago
- Kernel LdrLoadDll injector☆264Updated 7 years ago
- x86 Binary Code Virtualization Tool☆223Updated 8 months ago
- Vectored Exception Handling Hooking Class☆165Updated 6 years ago
- Hooking Windows' exception dispatcher to protect process's PML4☆203Updated 9 months ago
- Bypassing PatchGuard on modern x64 systems☆265Updated 2 years ago
- A proof of concept demonstrating instrumentation callbacks on Windows 10 21h1 with a TLS variable to ensure all syscalls are caught.☆142Updated 3 years ago
- ☆188Updated 3 years ago
- A modern c++ implementation of windows heavens gate☆234Updated 5 years ago
- Easy Anti PatchGuard☆221Updated 4 years ago
- Bootkit for Windows Sandbox to disable DSE/PatchGuard.☆305Updated last year
- Elevate a process to be a protected process☆150Updated 6 years ago
- DLL that hooks the NtQuerySystemInformation API and hides a process name☆294Updated 2 years ago
- compile-time control flow obfuscation using mba☆194Updated 2 years ago
- Kernel driver loader using vulnerable gigabyte driver (https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vu…☆262Updated 4 years ago
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆236Updated 11 months ago
- Single header version of System Informer's phnt library.☆230Updated last week
- State of the art DLL injector that took 20 minutes to make☆219Updated 2 years ago
- This project migrated to https://github.com/backengineering/llvm-msvc☆144Updated 2 years ago
- A mapper that maps shellcode into loaded large page drivers☆306Updated 3 years ago