idkwim / frookSINATRALinks
POC of sysenter x64 LSTAR MSR hook
☆40Updated 11 years ago
Alternatives and similar repositories for frookSINATRA
Users that are interested in frookSINATRA are comparing it to the libraries listed below
Sorting:
- Analyze PatchGuard☆59Updated 7 years ago
- kernel-mode TDI client which can send and receive HTTP requests☆55Updated 7 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆36Updated last year
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆79Updated 14 years ago
- Шаблон полнофункционального драйвера и обёртки над ядерным API☆115Updated 9 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆67Updated 5 years ago
- core of pkn game hacking project. Including mainly for process management, memory management, and DLL injecttion. Also PE analysis, windo…☆66Updated 6 years ago
- Library for kernel and user mode splicing for Windows (x86 and x64).☆64Updated 12 years ago
- Code injection by hijacking threads in Windows 32-bit applications☆43Updated 7 years ago
- This is the first software system, which can detect a stealthy hypervisor and calculate several nested ones even under countermeasures.☆84Updated 10 years ago
- Shareds for kernel developement☆28Updated 11 years ago
- An ark tool's driver☆40Updated 8 years ago
- createfile☆49Updated 9 years ago
- a simple intel vt code both support x86 & x64. PatchGuard monitor.☆76Updated 3 years ago
- ☆42Updated 6 years ago
- Standalone program to download PDB Symbol files for debugging without WDK☆79Updated 6 years ago
- usermode standalone kernel interface☆111Updated 7 years ago
- Open Source Libraries Collection☆24Updated 9 years ago
- Manual PE image mapper☆65Updated 12 years ago
- PoC of BOOST-ed _EPROCESS.VadRoot iterating☆26Updated 11 years ago
- ☆37Updated 4 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆63Updated 6 years ago
- Open Course for diving security internal☆51Updated 5 years ago
- ☆69Updated 4 years ago
- Driver demonstrating how to register a DPC to asynchronously wait on an object☆50Updated 4 years ago
- C++ 17 compile time string encryption supporting vs2010-2019☆75Updated 5 years ago
- viewing page boundaries of pages with PAGE_NOACCESS protection reveals the presence of x64dbg.☆23Updated 8 years ago
- An API Monitor based on Instrumentation☆44Updated 7 years ago
- Windows sandbox PoC☆32Updated 5 years ago
- ☆37Updated 10 years ago