gmh5225 / kli-ex
Expanding Kernel Lazy Importer
☆31Updated 2 years ago
Alternatives and similar repositories for kli-ex:
Users that are interested in kli-ex are comparing it to the libraries listed below
- ☆68Updated 2 years ago
- ☆30Updated 2 years ago
- Mapping your code on a 0x1000 size page☆72Updated 2 years ago
- Freeze target threads (external - internal ) by avoiding SuspendThread detections. Or access registers from start address.☆32Updated last year
- ☆48Updated 3 years ago
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆83Updated last year
- Library to manipulate drivers that expose a physical memory read/write primitive.☆24Updated last year
- ☆52Updated 2 years ago
- Virtual and physical memory hacking library using gigabyte vulnerable driver☆71Updated 2 years ago
- page table manipulation to gain physical r/w☆40Updated 11 months ago
- clearing traces of a loaded driver☆47Updated 2 years ago
- UM-KM Communication using registry callbacks☆39Updated 4 years ago
- ☆49Updated last year
- 将驱动映射到会话空间☆34Updated 2 years ago
- ntoskrnl .data hooks for UM-KM communication☆38Updated 10 months ago
- Bypass using kernel driver (not finish).☆20Updated last year
- Discarded Section Manual Map☆67Updated 4 years ago
- ☆25Updated last year
- ☆46Updated 3 years ago
- ☆23Updated 5 months ago
- Hiding the window from screenshots using the function win32kfull::ChangeWindowTreeProtection☆11Updated 3 years ago
- A library to assist with memory & code protection.☆55Updated last year
- ☆46Updated 3 years ago
- POC Hook of nt!HvcallCodeVa☆51Updated last year
- PAGE_GUARD based hooking library☆43Updated 2 years ago
- Allows for same-file KernelMode function execution using Encrypted addresses of Functions☆33Updated 5 months ago
- ☆75Updated last year
- Old way for blocking NMI interrupts☆26Updated 2 years ago
- Hiding a system thread against conventional means of detection☆40Updated 4 years ago
- Driver shared section communication☆44Updated last month