danielkrupinski / x86RetSpoof
Invoke functions with a spoofed return address. For 32-bit Windows binaries. Supports __fastcall, __thiscall, __stdcall and __cdecl calling conventions. Written in C++17.
☆172Updated 2 years ago
Alternatives and similar repositories for x86RetSpoof:
Users that are interested in x86RetSpoof are comparing it to the libraries listed below
- manually map driver for a signed driver memory space☆153Updated 4 years ago
- Proof of concept on how to bypass some limitations of a manual mapped driver☆168Updated 4 years ago
- Module extending manual mapper☆330Updated 5 years ago
- An Injector that can inject dll into game process protected by anti cheat using SetWindowsHookEx.☆242Updated 5 years ago
- undetected eac mapper☆165Updated 2 years ago
- 09/2021 reversal of EasyAntiCheat driver☆213Updated 3 years ago
- A kernelmode driver swapping a .data pointer in the kernel to perform communication between the kernel and usermode.☆142Updated 4 years ago
- ☆214Updated 2 years ago
- The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.☆286Updated 4 years ago
- BattlEye shellcodes tester☆141Updated 3 years ago
- ☆142Updated 4 years ago
- Hook WinAPI functions used by Valve Anti-Cheat. Log calls and intercept arguments & return values. DLL written in C.☆171Updated 4 years ago
- Allows you to communicate with the kernel mode to manipulate memory in a stealthy way to avoid kernel anticheats.☆171Updated 2 years ago
- Using CVE-2021-40449 to manual map kernel mode driver☆100Updated 3 years ago
- a more stable & secure read/write virtual memory for kernel mode drivers☆165Updated 5 years ago
- my own implementation cz yes☆91Updated 3 years ago
- Drawing from kernelmode without any hooks☆162Updated 2 years ago
- windows syscalls with a single line and a high level of abstraction. has modern cpp20 wrappers and utilities, range-based DLL and export …☆176Updated last week
- Manual mapper that uses PTE manipulation, Virtual Address Descriptor (VAD) manipulation, and forceful memory allocation to hide executabl…☆321Updated 3 years ago
- Kernel cheat with kernel hook for communication☆295Updated 3 years ago
- Stealthy UM <-> KM communication system without creating any system threads, permanent hooks, driver objects, section objects or device o…☆375Updated last year
- csgo external running from kernelmode☆108Updated 2 years ago
- Cool kernel communication method.☆101Updated 3 years ago
- Kernel Lazy Importer☆112Updated last year
- Kernel driver that .text hooks a syscall in dxgkrnl.sys which can be called from our user-mode client to send instructions like rpm/wpm a…☆170Updated 2 years ago
- xigmapper is a driver manual mapper that loads your driver before Vanguard, but after critical system infrastructure has been set up, all…☆249Updated last year
- ☆184Updated 4 years ago
- Loads a signed kernel driver which allows you to map any driver to kernel mode without any traces of the signed / mapped driver.☆321Updated 3 years ago
- ☆121Updated 2 years ago
- Code for Battleyes shellcode☆221Updated 3 years ago