huoji120 / CowInjecterView external linksLinks
滥用cow机制进行全局注入
☆99Jan 1, 2021Updated 5 years ago
Alternatives and similar repositories for CowInjecter
Users that are interested in CowInjecter are comparing it to the libraries listed below
Sorting:
- Kernel DLL Injector using NX Bit Swapping and VAD hide for hiding injected DLL☆220Nov 12, 2020Updated 5 years ago
- 之前学习X64VT写的代码,很多坑,但是大体的逻辑还是完整的。现发出来给更多想学VT的人参考...☆71Apr 26, 2021Updated 4 years ago
- ☆99Oct 6, 2017Updated 8 years ago
- 让Etwhook再次伟大! Make InfinityHook Great Again!☆147Jun 24, 2021Updated 4 years ago
- Hide codes/data in the kernel address space.☆188May 8, 2021Updated 4 years ago
- 巨硬☆17Oct 4, 2023Updated 2 years ago
- Hook NtDeviceIoControlFile with PatchGuard☆107May 10, 2022Updated 3 years ago
- ayy debuger☆89Mar 3, 2024Updated last year
- Global DLL injector☆71May 16, 2021Updated 4 years ago
- Intercepting DeviceControl via WPP☆138Nov 18, 2019Updated 6 years ago
- https://key08.com/index.php/2021/10/19/1375.html☆71May 11, 2022Updated 3 years ago
- ☆35Jun 13, 2020Updated 5 years ago
- Some garbage drivers written for getting started☆66Dec 31, 2019Updated 6 years ago
- first commit☆64Oct 29, 2020Updated 5 years ago
- Analyze Windows x64 Kernel Memory Layout☆129Nov 19, 2020Updated 5 years ago
- (DEPRECATED) A simple anti-anti debug library for Windows☆30Aug 7, 2020Updated 5 years ago
- Easy Anti PatchGuard☆223Apr 9, 2021Updated 4 years ago
- Intel Virtualization Technology demo☆73Oct 15, 2016Updated 9 years ago
- Reverse engineered source code of the autochk rootkit☆208Nov 1, 2019Updated 6 years ago
- IO隐藏通信封装☆17May 31, 2021Updated 4 years ago
- ☆223Mar 11, 2023Updated 2 years ago
- 之前那份是7600的,每次编译搞得好麻烦。更新一个VS2017可以直接编译的。☆154Jun 5, 2019Updated 6 years ago
- Hooking kernel functions by abusing alignment☆248Jan 5, 2021Updated 5 years ago
- a simple intel vt code both support x86 & x64. PatchGuard monitor.☆77Oct 28, 2021Updated 4 years ago
- This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemo…☆631Mar 19, 2019Updated 6 years ago
- codes for my blog post: https://secrary.com/Random/InstrumentationCallback/☆183Nov 30, 2017Updated 8 years ago
- Code for Battleyes shellcode☆238Nov 11, 2021Updated 4 years ago
- Rendering on external windows via hijacking thread contexts☆404Jun 28, 2020Updated 5 years ago
- Win7内核私有符号结构转储☆70Sep 3, 2021Updated 4 years ago
- PoC: make WDA_MONITOR window transparent on screenshot/capture☆100Feb 5, 2020Updated 6 years ago
- ☆73Aug 31, 2022Updated 3 years ago
- pseudo-code to show how to disable patchguard with win10☆294Jan 13, 2018Updated 8 years ago
- 内核驱动加载/卸载痕迹清理,努力绕过反作弊吧 PiDDBCacheTable and MmLastUnloadedDriver☆188Feb 11, 2023Updated 3 years ago
- InfinityHookPro Win7 -> Win11 latest☆551Feb 7, 2023Updated 3 years ago
- For Example. See Miro's Blog☆30Nov 26, 2022Updated 3 years ago
- 从MmPfnData中枚举进程和页目录基址☆206Aug 18, 2023Updated 2 years ago
- The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.☆342Apr 27, 2020Updated 5 years ago
- Collect different versions of Crucial modules.☆144Jul 11, 2024Updated last year
- A simple example how to decrypt kernel debugger data block☆31Feb 8, 2021Updated 5 years ago