idkwim / frookSINATRALinks
POC of sysenter x64 LSTAR MSR hook
☆40Updated 11 years ago
Alternatives and similar repositories for frookSINATRA
Users that are interested in frookSINATRA are comparing it to the libraries listed below
Sorting:
- Analyze PatchGuard☆57Updated 7 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆36Updated last year
- kernel-mode TDI client which can send and receive HTTP requests☆55Updated 7 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆65Updated 5 years ago
- Шаблон полнофункционального драйвера и обёртки над ядерным API☆115Updated 9 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆78Updated 14 years ago
- Library for kernel and user mode splicing for Windows (x86 and x64).☆64Updated 12 years ago
- Code injection by hijacking threads in Windows 32-bit applications☆43Updated 7 years ago
- Anti-Anti-VM solution via Windows Driver☆59Updated 7 years ago
- Shareds for kernel developement☆28Updated 11 years ago
- An ark tool's driver☆40Updated 8 years ago
- ☆37Updated 9 years ago
- PoC of BOOST-ed _EPROCESS.VadRoot iterating☆26Updated 11 years ago
- ☆41Updated 6 years ago
- Example of hijacking system calls via function pointer tables☆31Updated 4 years ago
- ☆37Updated 4 years ago
- a simple intel vt code both support x86 & x64. PatchGuard monitor.☆76Updated 3 years ago
- win32/x64 obfuscate framework☆33Updated 6 years ago
- Manual PE image mapper☆65Updated 12 years ago
- core of pkn game hacking project. Including mainly for process management, memory management, and DLL injecttion. Also PE analysis, windo…☆67Updated 6 years ago
- Hook IDT vector 0xb2 to detect SCI in 64bit windows.☆34Updated 3 years ago
- Windows Console Monitor☆34Updated 6 years ago
- Open Course for diving security internal☆51Updated 5 years ago
- This is a simple driver with x64 inline assembly☆57Updated 5 years ago
- ☆68Updated 4 years ago
- ☆27Updated 6 years ago
- Demo List cm/ps/ob/minifilter callback And Patch/Bypass it☆29Updated 7 years ago
- createfile☆49Updated 9 years ago
- Figuring out the cause of a handle downgrade☆24Updated 2 years ago
- This is the first software system, which can detect a stealthy hypervisor and calculate several nested ones even under countermeasures.☆84Updated 10 years ago