SoulExtraction is a windows driver library for extracting cert information in windows drivers
☆25Feb 12, 2023Updated 3 years ago
Alternatives and similar repositories for Driver-SoulExtraction
Users that are interested in Driver-SoulExtraction are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Inject dll to process in driver☆10Aug 27, 2024Updated last year
- Take back control of Windows Code Integrity, no exploits or patching required! Requires that you control your own Platform Key (PK).☆52Aug 22, 2022Updated 3 years ago
- ☆30Dec 20, 2025Updated 3 months ago
- Cmdlets for capturing Windows Events☆14Mar 11, 2022Updated 4 years ago
- CVE-2022-3699 with arbitrary kernel code execution capability☆71Dec 27, 2022Updated 3 years ago
- ☆36Mar 27, 2022Updated 3 years ago
- How to use PiDqSerializationWrite. Introduces how to safely read and write from mapped driver☆26May 29, 2023Updated 2 years ago
- Simple anti-instrumentation with EFLAGS.AC☆17Mar 31, 2025Updated 11 months ago
- Compile-time string crypter library for C++☆14May 7, 2021Updated 4 years ago
- [POC Detected]Bypass BE Anti Dll Injection (POC/Need Driver)☆17Mar 30, 2020Updated 5 years ago
- Demo List cm/ps/ob/minifilter callback And Patch/Bypass it☆29Dec 5, 2017Updated 8 years ago
- eac memory sig maker☆14Jun 10, 2021Updated 4 years ago
- ☆18Mar 28, 2023Updated 2 years ago
- PsSetCreateProcessNotifyRoutine bypass proof-of-concept for manual mapped drivers☆35Jul 19, 2021Updated 4 years ago
- A simple python script to check evil Visual Studio projects☆21Oct 13, 2023Updated 2 years ago
- A minimal CR3 protection PoC (KdpTrap hook)☆16Jan 25, 2025Updated last year
- POC of integrity checks☆14May 31, 2021Updated 4 years ago
- PE(compressed dll) memory loader using nt api☆46Jul 3, 2017Updated 8 years ago
- Windows Kernel Mode PCRE☆10Feb 4, 2015Updated 11 years ago
- ☆25Apr 28, 2024Updated last year
- Open-source EDR kernel-component for system monitoring and DLL injection☆33Nov 14, 2020Updated 5 years ago
- ☆16Apr 10, 2025Updated 11 months ago
- Collection of Cheat dumps for Research and Detection.☆16Jan 4, 2026Updated 2 months ago
- Detect removed thread from PspCidTable.☆75Mar 18, 2022Updated 4 years ago
- Code Injection, Inject malicious payload via pagetables pml4.☆242Jul 7, 2021Updated 4 years ago
- Just an example of a well-known technique to detect memory tampering via Windows Working Sets.☆18Jan 15, 2022Updated 4 years ago
- Hook NtDeviceIoControlFile with PatchGuard☆107May 10, 2022Updated 3 years ago
- Extension functionality for the NightHawk operator client☆26Oct 31, 2023Updated 2 years ago
- Kernel Context [template c++] Library - K C L. Your stl for work in linux/windows kernel !!!☆11Jul 24, 2018Updated 7 years ago
- Formely KMon, a Windows Kernel Driver designed to prevent malware attacks by monitoring the creation of registry keys in common autorun l…☆21Feb 15, 2014Updated 12 years ago
- Hook all callbacks which are registered with LdrRegisterDllNotification☆97Apr 3, 2025Updated 11 months ago
- Header only c++ network library, based on asio,support tcp,udp,http,websocket,rpc,ssl,icmp,serial_port.☆10Nov 20, 2020Updated 5 years ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated 11 months ago
- Hiding a system thread against conventional means of detection☆42Oct 7, 2020Updated 5 years ago
- Disable threat tracing from the kernel..☆14Apr 8, 2022Updated 3 years ago
- Using MMIO (Memory-Mapped I/O) to read TPM 2.0 public Endorsement Key.☆54May 29, 2024Updated last year
- some classes which can help me to program kernel driver in Windows.☆16Feb 9, 2018Updated 8 years ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆271Aug 31, 2022Updated 3 years ago
- File system minifilter driver for Windows to block symbolic link attacks.☆51Dec 16, 2020Updated 5 years ago