freakanonymous / DLL_ROOTKIT_loader
Rootkit loader for your rootkit dll, x86/x64 system wide DLL injection (+appinit_dlls registry create) uses heavens gate
☆18Updated 4 years ago
Alternatives and similar repositories for DLL_ROOTKIT_loader:
Users that are interested in DLL_ROOTKIT_loader are comparing it to the libraries listed below
- ☆27Updated 2 years ago
- Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address☆24Updated 3 years ago
- Dump mapped PE files from memory to the disk☆19Updated 5 years ago
- Fake Timestamps of Driver Certificates while keeping validity.☆16Updated 3 years ago
- x64 Windows privilege elevation using anycall☆21Updated 3 years ago
- XOrCryptEx lightweight C Utility/Algorithm☆11Updated 2 years ago
- Hijack NotifyRoutine for a kernelmode thread☆41Updated 2 years ago
- Rebuild of the original Remote Admin Tool☆9Updated 5 years ago
- Injector with kernel power☆16Updated 4 years ago
- A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing…☆12Updated 4 years ago
- ☆26Updated 7 years ago
- A dll injector static library for Win x64 processes with handle elevation supported☆12Updated 3 years ago
- Some crazy PE executables protection kernel driver☆18Updated 4 years ago
- Protected Process Light Library☆18Updated 4 years ago
- collection of code snippets,windbg,python scripts and resources☆13Updated 2 years ago
- Криптор с антиэмуляцией и полиморфизмом для x64☆14Updated 5 years ago
- Phantom DLL Hollowing method implemented in modmap☆17Updated 3 years ago
- Скрытие строки от отладчиков и декомпиляторов☆50Updated 5 years ago
- IAT-Obfuscation to make static analysis of executable harder.☆42Updated 3 years ago
- Rookit and anti rookit on Windows platform☆12Updated 9 months ago
- Anti-Analysis technique, trick the debugger by Hiding events from it.☆19Updated 3 years ago
- win32/x64 obfuscate framework☆32Updated 5 years ago
- A kernel mode Windows rootkit in development.☆49Updated 3 years ago
- Reverse Socks5 proxy for windows☆13Updated 2 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆31Updated 5 years ago
- With this RunPE you can easily inject your payload in any x86 or x64 program.☆12Updated 5 years ago
- ☆26Updated 3 years ago
- Register a callback from a Manually mapped kernel module☆15Updated 3 years ago
- automates exploits using ROP chains, using ntdll-scraper☆16Updated 2 years ago
- Load Encrypted Dll Using LoadLibraryA, Keep The Dll Encrypted on disc all the time and decrypt it only in memory.☆18Updated 3 years ago