idkwim / frookSINATRALinks
POC of sysenter x64 LSTAR MSR hook
☆40Updated 11 years ago
Alternatives and similar repositories for frookSINATRA
Users that are interested in frookSINATRA are comparing it to the libraries listed below
Sorting:
- Analyze PatchGuard☆59Updated 6 years ago
- kernel-mode TDI client which can send and receive HTTP requests☆55Updated 7 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆36Updated last year
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆79Updated 14 years ago
- Шаблон полнофункционального драйвера и обёртки над ядерным API☆115Updated 8 years ago
- PoC of BOOST-ed _EPROCESS.VadRoot iterating☆25Updated 11 years ago
- Shareds for kernel developement☆28Updated 11 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆68Updated 5 years ago
- Code injection by hijacking threads in Windows 32-bit applications☆43Updated 6 years ago
- Open Source Libraries Collection☆24Updated 9 years ago
- An ark tool's driver☆40Updated 8 years ago
- Library for kernel and user mode splicing for Windows (x86 and x64).☆64Updated 12 years ago
- win32/x64 obfuscate framework☆32Updated 6 years ago
- ☆27Updated 6 years ago
- ☆36Updated 4 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆62Updated 6 years ago
- Anti-Anti-VM solution via Windows Driver☆58Updated 7 years ago
- ☆38Updated 6 years ago
- a simple intel vt code both support x86 & x64. PatchGuard monitor.☆76Updated 3 years ago
- core of pkn game hacking project. Including mainly for process management, memory management, and DLL injecttion. Also PE analysis, windo…☆66Updated 6 years ago
- Hook IDT vector 0xb2 to detect SCI in 64bit windows.☆34Updated 2 years ago
- ☆69Updated 4 years ago
- Windows Kernel Driver - Create a driver device in TDI layer of windows kernel to capture network data packets☆37Updated 11 years ago
- Standalone program to download PDB Symbol files for debugging without WDK☆79Updated 6 years ago
- Open Course for diving security internal☆51Updated 5 years ago
- createfile☆48Updated 9 years ago
- This is the first software system, which can detect a stealthy hypervisor and calculate several nested ones even under countermeasures.☆86Updated 10 years ago
- Windows sandbox PoC☆32Updated 5 years ago
- Demo List cm/ps/ob/minifilter callback And Patch/Bypass it☆29Updated 7 years ago
- by others☆38Updated 7 years ago