idkhidden / winapipatcherLinks
WinApi Patcher is a straightforward tool leveraging windows API hooking to patch and modify certain behaviors in a targeted environment.
☆43Updated last year
Alternatives and similar repositories for winapipatcher
Users that are interested in winapipatcher are comparing it to the libraries listed below
Sorting:
- Ryūjin Protector - Is a Intel Arch - BIN2BIN - PE Obfuscation/Protection/DRM tool☆83Updated this week
- spoof return address☆77Updated 2 years ago
- A C++17 framework designed to enable obfuscation of constants, variables, and strings.☆22Updated 2 years ago
- SysCaller: SDK for WindowsAPI via syscalls. Dynamic Resolution, Obfuscation, Multi-Language Bindings, & more!☆50Updated this week
- ntoskrnl .data hooks for UM-KM communication☆51Updated last year
- An improved version of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆72Updated 7 months ago
- A serie of exploits targeting eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W☆105Updated last month
- Scan for potentially vulnerable drivers☆92Updated 3 years ago
- Using c++23 compile-time magic to produce obfuscated PIC strings and arrays.☆30Updated last year
- Tool to dump EFI runtime drivers.☆37Updated last year
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆155Updated 2 years ago
- kernel-mode DLL Injector☆117Updated 6 months ago
- Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…☆129Updated 2 years ago
- PoC for popping a system shell against the LnvMSRIO.sys driver☆112Updated last month
- DSE & PG bypass via BYOVD attack☆66Updated 4 months ago
- Windows 11 24H2-25H2 Runtime PatchGuard Bypass☆209Updated 2 weeks ago
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆78Updated 4 months ago
- All LLVM binaries scrambled with SigBreaker and used to test against llvm-lit☆25Updated 6 months ago
- X86 Packer with Portable Executable compatibility.☆61Updated 2 months ago
- ANY.RUN sandbox detection collection☆21Updated last year
- ☆26Updated last year
- Research of modifying exported function names at runtime (C/C++, Windows)☆18Updated last year
- Native Shellcode Injector Via Handle Hijacking & Pool Party.☆12Updated last year
- Proof-of-concept kernel driver that hijacks the Windows kernel extension table mechanism to preserve process notify callbacks even when a…☆92Updated 4 months ago
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆78Updated 2 years ago
- Obfuscating function calls using Vectored Exception Handlers by redirecting execution through exception-based control flow. Uses byte swa…☆96Updated 2 weeks ago
- Detours implementation (x64/x86) which used only ntdll import☆89Updated last month
- Hook all callbacks which are registered with LdrRegisterDllNotification☆92Updated 7 months ago
- Load dll with undocumented functions and debug symbols☆47Updated last year
- C++ macro for x64 programs that breaks ida hex-rays decompiler tool.☆129Updated last year