hfiref0x / al-khaserLinks
(This is a fork used primarily to submit patches into upstream repository) Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
☆19Updated 3 weeks ago
Alternatives and similar repositories for al-khaser
Users that are interested in al-khaser are comparing it to the libraries listed below
Sorting:
- This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness☆52Updated 5 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆78Updated 14 years ago
- Capcom wrapper with safety in mind.☆80Updated 7 years ago
- Some garbage drivers written for getting started☆65Updated 5 years ago
- Manual PE image mapper☆65Updated 11 years ago
- Code injection by hijacking threads in Windows 32-bit applications☆43Updated 6 years ago
- Analyze PatchGuard☆58Updated 6 years ago
- Windows Manipulation Library (x64, User/Kernelmode)☆77Updated 6 years ago
- kernel-mode TDI client which can send and receive HTTP requests☆55Updated 7 years ago
- Small tool which loads Windows drivers with NtLoadDriver☆44Updated 4 years ago
- a simple intel vt code both support x86 & x64. PatchGuard monitor.☆75Updated 3 years ago
- Hiding x32/x64 Modules/DLLs using PEB☆60Updated 10 years ago
- A sample on how to inject a DLL from a kernel driver☆62Updated 8 years ago
- ☆27Updated 7 years ago
- Disable Driver Callbacks☆105Updated 7 years ago
- Currently supports injecting signed/unsigned DLLs in 64-bit processes☆63Updated 4 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆60Updated 6 years ago
- LSASS INJECTOR☆35Updated 6 years ago
- ☆68Updated 4 years ago
- Standalone program to download PDB Symbol files for debugging without WDK☆76Updated 6 years ago
- Windows Kernel Template Library☆110Updated 2 years ago
- A reflexive driver loader to bypass Windows DSE (featuring a custom PE loader)☆41Updated 6 years ago
- ☆97Updated 7 years ago
- Collect different versions of Crucial modules.☆142Updated 11 months ago
- Hidden kernel mode code execution for bypassing modern anti-rootkits.☆83Updated 14 years ago
- Windows Kernel Driver dlls injector using APC☆62Updated 6 years ago
- ☆125Updated 5 years ago
- Anti-Anti-VM solution via Windows Driver☆58Updated 7 years ago
- core of pkn game hacking project. Including mainly for process management, memory management, and DLL injecttion. Also PE analysis, windo…☆66Updated 6 years ago
- (DEPRECATED) A simple anti-anti debug library for Windows☆29Updated 4 years ago