Example Windows Kernel-mode Driver which enumerates running processes.
☆60Jul 17, 2022Updated 3 years ago
Alternatives and similar repositories for KernelProcessList
Users that are interested in KernelProcessList are comparing it to the libraries listed below
Sorting:
- Example Windows Kernel-mode Driver which finds process ID by executable file name.☆18Nov 23, 2019Updated 6 years ago
- Inject dll to process in driver☆10Aug 27, 2024Updated last year
- A simple ransomware defender.It uses minifilter to filt "rewrite" and "delete" events in kernel.And it handles event in user mode.☆27Aug 14, 2018Updated 7 years ago
- a loadable windows disk filter driver☆16Nov 24, 2012Updated 13 years ago
- ☆10Sep 12, 2019Updated 6 years ago
- My Personal Kernel-Mode Process dumper☆13Feb 18, 2024Updated 2 years ago
- Hook WinAPI functions used by Valve Anti-Cheat. Log calls and intercept arguments & return values. DLL written in C.☆183Jun 12, 2020Updated 5 years ago
- Collection of Windows kernel driver examples, offering insights into Windows internals, rootkit evasion, and advanced driver development.☆12Nov 23, 2023Updated 2 years ago
- Wrapper for VMProtect Library (only MSVC)☆35Jul 6, 2018Updated 7 years ago
- Kernel based monitor to check if specified process loads libraries only from allowed directories☆12May 21, 2020Updated 5 years ago
- Uses a driver to read/write process memory☆14Oct 1, 2020Updated 5 years ago
- SoulExtraction is a windows driver library for extracting cert information in windows drivers☆25Feb 12, 2023Updated 3 years ago
- Small class to parse debug info from PEs, download their respective PDBs from the Microsoft Public Symbol Server and calculate RVAs of fu…☆44Apr 1, 2023Updated 2 years ago
- 基于MiniFilter和Sfilter的加解密☆23Jun 4, 2019Updated 6 years ago
- LPC (Local Procedure Call) is a portion of Windows NT kernel, used for fast communication between threads or processes. It can be also us…☆15Mar 21, 2021Updated 4 years ago
- Minifilter Driver☆15Feb 10, 2017Updated 9 years ago
- The program is intended for a dynamic unpacking of binders, crypters, packers and protectors☆13Sep 26, 2020Updated 5 years ago
- Single header library to simplify the usage of direct syscalls. x64/x86☆14Feb 26, 2023Updated 3 years ago
- eac memory sig maker☆14Jun 10, 2021Updated 4 years ago
- Hooking kernel functions by abusing alignment☆248Jan 5, 2021Updated 5 years ago
- Block process execute kernel driver for Windows x64☆19Apr 7, 2016Updated 9 years ago
- Kernel mode to user mode dll injection.☆14Nov 10, 2024Updated last year
- WTL helper library☆57Updated this week
- A Kernel driver for using against anti cheats like EAC or BE☆15Aug 10, 2021Updated 4 years ago
- 自己实现LoadLirbrary,GetProcAdd,FreeLirbrary等函数的功能,比特币病毒wcry就是用了这一功能☆18May 21, 2017Updated 8 years ago
- Windows 64bit 驱动hook OpenProcess 保护进程☆20Nov 12, 2018Updated 7 years ago
- hook detector☆31Nov 4, 2021Updated 4 years ago
- VT Hook☆51Jul 2, 2024Updated last year
- GeSWall, Intrusion Prevention System for Windows☆22Jan 18, 2026Updated last month
- PE executable to array of bytes converter☆25Dec 21, 2019Updated 6 years ago
- GUI Kernel driver process protect tool☆38Jul 13, 2018Updated 7 years ago
- PareidoliaTriggerbot is a hypervisor-based, external Widowmaker triggerbot which uses the VivienneVMM and MouClassInputInjection projects…☆33Nov 3, 2019Updated 6 years ago
- ☆18Sep 27, 2016Updated 9 years ago
- A simple rootkit to hide a process☆47Jan 10, 2014Updated 12 years ago
- Formely KMon, a Windows Kernel Driver designed to prevent malware attacks by monitoring the creation of registry keys in common autorun l…☆21Feb 15, 2014Updated 12 years ago
- X-HOOK | Cheat Loader☆10Mar 6, 2021Updated 4 years ago
- A basic Secure Virtual Machine hypervisor☆27Feb 25, 2021Updated 5 years ago
- This project will give you an example how you can hook a kernel vtable function that cannot be directly called☆84Dec 25, 2021Updated 4 years ago
- A mini anti-anti debug hooking library for Windows.☆106Jan 3, 2021Updated 5 years ago