illegal-instruction-co / II-ExternalHookingLib
External Hooking ( Bypasss process byte patching checks | Injector included )
☆20Updated 2 years ago
Alternatives and similar repositories for II-ExternalHookingLib:
Users that are interested in II-ExternalHookingLib are comparing it to the libraries listed below
- comparing data of module exports from disk and memory, then caching any differences.☆22Updated 3 years ago
- A simple present scene, kernel allocation injector.☆24Updated 2 years ago
- Bypass using kernel driver (not finish).☆20Updated last year
- Helps to find patched modules☆29Updated 4 years ago
- Hijack NotifyRoutine for a kernelmode thread☆41Updated 2 years ago
- x64 manual mapper using inline syscalls☆9Updated 3 years ago
- Stealthy Injector that leverages a vulnerable driver and other exploits to remain undetected☆36Updated 6 years ago
- ☆42Updated 3 years ago
- search for a driver/dll module that has a wanted section bigger than the size of your image☆20Updated 3 years ago
- UM-KM Communication using registry callbacks☆39Updated 4 years ago
- ☆48Updated last year
- ☆46Updated 3 years ago
- ☆46Updated 4 years ago
- ☆14Updated last year
- Register a callback from a Manually mapped kernel module☆16Updated 3 years ago
- ☆18Updated 2 years ago
- A poc that abuses Enclave☆37Updated 2 years ago
- ☆42Updated 2 years ago
- mouseclassservicecallback detection via hook☆50Updated 3 years ago
- C/C++ example of InjectMouseInput function☆32Updated 3 years ago
- Disk based DMA for ATA and SCSI☆23Updated last year
- ☆78Updated 3 years ago
- A resource for thread hijacking and manual mapping code, that works with MEM_MAPPED & MEM_IMAGE.☆26Updated 3 years ago
- ☆41Updated last year
- ☆20Updated 2 years ago
- clearing traces of a loaded driver☆47Updated 2 years ago
- Illustrates the concept of return address spoofing, and how it is used.☆13Updated 4 years ago
- RWX Section Abusing☆17Updated last year
- Stealing signatures from pe files☆17Updated 2 years ago
- ☆14Updated 4 years ago