idkhidden / winapipatcherLinks
WinApi Patcher is a straightforward tool leveraging windows API hooking to patch and modify certain behaviors in a targeted environment.
☆44Updated last year
Alternatives and similar repositories for winapipatcher
Users that are interested in winapipatcher are comparing it to the libraries listed below
Sorting:
- codecave hook reverse engineering toolkit.☆36Updated last year
- spoof return address☆77Updated 2 years ago
- A C++17 framework designed to enable obfuscation of constants, variables, and strings.☆22Updated last year
- Scan for potentially vulnerable drivers☆91Updated 3 years ago
- Exploits targeting eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W☆102Updated last month
- Fully working kernel-mode VAC bypass☆86Updated 7 months ago
- kernel-mode DLL Injector☆110Updated 5 months ago
- DSE & PG bypass via BYOVD attack☆64Updated 2 months ago
- ntoskrnl .data hooks for UM-KM communication☆51Updated last year
- ANY.RUN sandbox detection collection☆21Updated last year
- SysCaller: SDK for WindowsAPI via syscalls. Dynamic Resolution, Obfuscation, Multi-Language Bindings, & more!☆51Updated this week
- An improved version of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆72Updated 6 months ago
- Tool to dump EFI runtime drivers.☆38Updated last year
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆156Updated 2 years ago
- Using c++23 compile-time magic to produce obfuscated PIC strings and arrays.☆30Updated last year
- Research of modifying exported function names at runtime (C/C++, Windows)☆17Updated last year
- Windows 11 24H2 Runtime PatchGuard Bypass☆190Updated 3 weeks ago
- PoC Anti-Rootkit/Anti-Cheat Driver.☆221Updated 5 months ago
- Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…☆129Updated 2 years ago
- windows rootkit☆61Updated last year
- A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.☆31Updated 3 years ago
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆79Updated 3 months ago
- A windows kernel mode driver that spoofs serial numbers when mapped and executes a malicious payload (FULLY from kernel!!!)☆33Updated 11 months ago
- X86 Packer with Portable Executable compatibility.☆56Updated last month
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆68Updated 5 months ago
- A journal for $6,000 Riot Vanguard bounty.☆65Updated 2 years ago
- A universal binary patching dll.☆95Updated 11 months ago
- Detours implementation (x64/x86) which used only ntdll import☆90Updated last year
- ☆48Updated 8 months ago
- kASLR bypass technique on Intel CPUs.☆30Updated 4 months ago