idkhidden / winapipatcherLinks
WinApi Patcher is a straightforward tool leveraging windows API hooking to patch and modify certain behaviors in a targeted environment.
☆44Updated 11 months ago
Alternatives and similar repositories for winapipatcher
Users that are interested in winapipatcher are comparing it to the libraries listed below
Sorting:
- spoof return address☆75Updated 2 years ago
- Exploit for eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W☆62Updated 2 months ago
- codecave hook reverse engineering toolkit.☆37Updated last year
- ANY.RUN sandbox detection collection☆21Updated last year
- A C++17 framework designed to enable obfuscation of constants, variables, and strings.☆22Updated last year
- Windows 11 24H2 Runtime PatchGuard Bypass☆167Updated this week
- ntoskrnl .data hooks for UM-KM communication☆51Updated last year
- Scan for potentially vulnerable drivers☆90Updated 3 years ago
- An improved version of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆71Updated 4 months ago
- Using c++23 compile-time magic to produce obfuscated PIC strings and arrays.☆27Updated last year
- Tool to dump EFI runtime drivers.☆36Updated last year
- DSE & PG bypass via BYOVD attack☆59Updated last month
- Makes IDA (most versions) to crash upon opening it.☆99Updated 11 months ago
- PoC Anti-Rootkit/Anti-Cheat Driver.☆213Updated 4 months ago
- Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…☆129Updated 2 years ago
- windows rootkit☆61Updated last year
- Yet another IDA Pro/Home plugin for deobfuscating stack strings☆62Updated 3 weeks ago
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆158Updated 2 years ago
- kASLR bypass technique on Intel CPUs.☆24Updated 3 months ago
- kernel-mode DLL Injector☆108Updated 4 months ago
- ☆46Updated 6 months ago
- Fully working kernel-mode VAC bypass☆84Updated 6 months ago
- C++ macro for x64 programs that breaks ida hex-rays decompiler tool.☆128Updated last year
- X86 Packer with Portable Executable compatibility.☆56Updated this week
- A windows kernel mode driver that spoofs serial numbers when mapped and executes a malicious payload (FULLY from kernel!!!)☆33Updated 10 months ago
- Compileable POC of namazso's x64 return address spoofer.☆51Updated 5 years ago
- A universal binary patching dll.☆90Updated 10 months ago
- Experiment with PAGE_GUARD protection to hide memory from other processes☆48Updated last year
- Load dll with undocumented functions and debug symbols☆47Updated last year
- Rewrite and obfuscate code in compiled binaries☆223Updated this week