Freeze target threads (external - internal ) by avoiding SuspendThread detections. Or access registers from start address.
☆35Mar 23, 2024Updated last year
Alternatives and similar repositories for ThreadIn
Users that are interested in ThreadIn are comparing it to the libraries listed below
Sorting:
- Rendering on external windows via hijacking thread contexts, with notes on ValidateHwnd☆14Jul 9, 2020Updated 5 years ago
- POC Hook of nt!HvcallCodeVa☆54May 8, 2023Updated 2 years ago
- Not mine. Only for saving☆26Jun 28, 2022Updated 3 years ago
- Achieving code execution through abusing vectored exception handling☆17May 28, 2023Updated 2 years ago
- hooks gServerHandlers xxxEventWndProc☆13May 1, 2022Updated 3 years ago
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆104Jun 26, 2023Updated 2 years ago
- Looks for a vulnerable entry point to bypass BE Anti Cheat or other in Ring3☆17Feb 25, 2023Updated 3 years ago
- driver manual mapper powered by https://github.com/estimated1337/lenovo_exec☆115Dec 28, 2022Updated 3 years ago
- Old way for blocking NMI interrupts☆29Sep 6, 2022Updated 3 years ago
- spoof page-table-entry nx bit☆10Feb 16, 2022Updated 4 years ago
- TS-Changer - Forces the machine in/out of TestSigning Mode at runtime.☆64Aug 14, 2023Updated 2 years ago
- base for testing☆187Sep 28, 2024Updated last year
- Bypassing EasyAntiCheat.sys self-integrity by abusing call hierarchy☆83Oct 6, 2022Updated 3 years ago
- A mapper that maps shellcode into loaded large page drivers☆329Apr 26, 2022Updated 3 years ago
- ☆136Aug 6, 2022Updated 3 years ago
- ☆147Jan 24, 2024Updated 2 years ago
- silence file system monitoring components by hooking their minifilters☆61Jan 31, 2024Updated 2 years ago
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆159Apr 13, 2023Updated 2 years ago
- ☆47Feb 27, 2022Updated 4 years ago
- A poc that abuses Enclave☆40Sep 8, 2022Updated 3 years ago
- ☆193May 1, 2023Updated 2 years ago
- Disable threat tracing from the kernel..☆14Apr 8, 2022Updated 3 years ago
- Discarded Section Manual Map☆70Jun 18, 2020Updated 5 years ago
- ☆53Dec 21, 2022Updated 3 years ago
- ☆14May 10, 2021Updated 4 years ago
- Simple tool to dump/hide services in services.exe process.☆14Apr 22, 2022Updated 3 years ago
- PsSetCreateProcessNotifyRoutine/Ex/Ex2 hook☆13May 30, 2024Updated last year
- ☆57Mar 14, 2023Updated 3 years ago
- POC usermode <=> kernel communication via ALPC.☆72Jun 6, 2024Updated last year
- CVE-2022-3699 with arbitrary kernel code execution capability☆71Dec 27, 2022Updated 3 years ago
- Hiding a system thread against conventional means of detection☆42Oct 7, 2020Updated 5 years ago
- Abusing nvidia driver (nvoclock.sys) for physical/virtual memory and control register manipulation.☆280Updated this week
- Detect removed thread from PspCidTable.☆75Mar 18, 2022Updated 4 years ago
- Manual DLL Injector using Thread Hijacking. X64☆37Dec 9, 2018Updated 7 years ago
- Old project (2020) reformed. Modifies gRT->GetVariable sub function from EFI_APPLICATION. Tested on Win10 22H2 (AMD).☆55Feb 28, 2024Updated 2 years ago
- ☆16Apr 10, 2025Updated 11 months ago
- usermode driver mapper that forcefully loads any signed kernel driver (legit cert) with a big enough section (example: .data, .rdata) to …☆475Jan 3, 2022Updated 4 years ago
- simple zero-dependency timer implementation☆12May 24, 2023Updated 2 years ago
- ☆367May 11, 2025Updated 10 months ago