参考taviso的代码逆向一下mpengine.dll
☆20Jun 30, 2022Updated 3 years ago
Alternatives and similar repositories for mpengine_diskus
Users that are interested in mpengine_diskus are comparing it to the libraries listed below
Sorting:
- A simple tool for enumerating dynamic endpoints on a DCE/RPC remote or local endpoint mapper.☆15Oct 9, 2020Updated 5 years ago
- ☆29Jan 15, 2021Updated 5 years ago
- A collection of cpuid instruction implementations for anti-vm purposes.☆10Oct 5, 2023Updated 2 years ago
- Interprocess communication library, providing the ability to call functions from each other☆20Oct 3, 2019Updated 6 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆33Nov 14, 2020Updated 5 years ago
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆21Jan 25, 2022Updated 4 years ago
- A poc of embedding x64 code into x86 PE file☆20Sep 25, 2019Updated 6 years ago
- Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)☆115May 21, 2023Updated 2 years ago
- Windows Event Log Knowledge Base☆31Dec 23, 2025Updated 2 months ago
- A working version of this tutorial: https://docs.microsoft.com/en-us/windows/desktop/rpc/tutorial☆16Jun 22, 2019Updated 6 years ago
- Dump PDB Symbols including support for Bochs Debugging Format (with wine support)☆14Aug 11, 2023Updated 2 years ago
- Microsoft decompiled IrDA drivers☆16Apr 15, 2015Updated 10 years ago
- Windows ndiscap.sys adapter for WinPcap applications☆27Jun 26, 2016Updated 9 years ago
- A simple example how to decrypt kernel debugger data block☆32Feb 8, 2021Updated 5 years ago
- A kernel mode Windows rootkit in development.☆49Dec 31, 2021Updated 4 years ago
- ☆11Jun 24, 2024Updated last year
- Self-Loading Registration Free COM Functions☆11Nov 12, 2019Updated 6 years ago
- ☆15Mar 28, 2015Updated 10 years ago
- ☆10Aug 16, 2019Updated 6 years ago
- A VMBR (Virtual-Machine Based Rootkit) which runs a guest OS and sends the attacker its data☆28Apr 27, 2024Updated last year
- Hijack NotifyRoutine for a kernelmode thread☆41Jun 4, 2022Updated 3 years ago
- pass game protect☆12Apr 26, 2014Updated 11 years ago
- A library for intel VT-x hypervisor functionality supporting EPT shadowing.☆51Mar 11, 2021Updated 5 years ago
- Simple DLL and client app that work together to hook all the functions in WinHvPlatform.dll in order to provide logging and introspection…☆21Dec 1, 2021Updated 4 years ago
- ☆61Aug 21, 2023Updated 2 years ago
- x86/x64 dll injector☆31May 17, 2022Updated 3 years ago
- Application Verifier Dynamic Fault Injection☆41Jan 12, 2026Updated 2 months ago
- WTL helper library☆57Mar 6, 2026Updated 2 weeks ago
- DTrace for Windows in userspace; Frontend to ETW☆27Oct 4, 2022Updated 3 years ago
- ☆17Apr 18, 2023Updated 2 years ago
- Call NtCreateUserProcess directly as normal.☆77May 17, 2022Updated 3 years ago
- 解析静态库(Lib)文件,提取出所有函数信息,组织成自定义格式文件☆38Jul 21, 2013Updated 12 years ago
- NTrace -- a function boundary tracing tool for Windows user and kernel mode☆22Nov 1, 2013Updated 12 years ago
- WinDbg cheat sheet☆16May 10, 2023Updated 2 years ago
- 《Windows内核编程》学习☆62Feb 23, 2021Updated 5 years ago
- kernel driver used to monitor the activity of BadlionAnticheat.sys by patching its IAT☆32Jul 9, 2021Updated 4 years ago
- What makes it page☆17Aug 24, 2022Updated 3 years ago
- a frame of amd-v svm nest☆53Apr 7, 2020Updated 5 years ago
- Wechat PC Open More [PC 微信 多开 Demo]☆10Dec 20, 2018Updated 7 years ago