☆29Mar 9, 2024Updated 2 years ago
Alternatives and similar repositories for DieDMAProtection
Users that are interested in DieDMAProtection are comparing it to the libraries listed below
Sorting:
- it's a driver injector or driver loader header lib(Windows)☆12Aug 5, 2023Updated 2 years ago
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆83Dec 21, 2022Updated 3 years ago
- POC Hook of nt!HvcallCodeVa☆54May 8, 2023Updated 2 years ago
- ☆23May 8, 2023Updated 2 years ago
- Virtual and physical memory hacking library using gigabyte vulnerable driver☆71Updated this week
- Report and exploit of CVE-2024-21305.☆42Jan 14, 2024Updated 2 years ago
- Using Windows' own bootloader as a shim to bypass Secure Boot☆229Jul 17, 2024Updated last year
- Standard Kernel Library for Windows manipulation in C++☆203Jun 18, 2025Updated 9 months ago
- Provides commands to read from and write to arbitrary kernel-mode memory for users with the Administrator privilege. HVCI compatible. No …☆23Jun 16, 2024Updated last year
- base for testing☆187Sep 28, 2024Updated last year
- ☆23Aug 27, 2025Updated 6 months ago
- just proof of concept. hooking MmCopyMemory PG safe.☆84Nov 13, 2023Updated 2 years ago
- intel vt-x type 2 hypervisor☆64Apr 13, 2025Updated 11 months ago
- 这篇文章的目的是介绍一款实验性项目基于COM命名管道或者Windows Hyper-V虚拟机Vmbus通道实现的运行在uefi上的windbg调试引擎开发心得☆43Jun 16, 2024Updated last year
- Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures☆38Sep 22, 2024Updated last year
- ntos shit☆29Feb 15, 2024Updated 2 years ago
- Using MMIO (Memory-Mapped I/O) to read TPM 2.0 public Endorsement Key.☆54May 29, 2024Updated last year
- Static user/kernel mode library that allows access to all functions and global variables by extracting offsets from the PDB☆118May 29, 2025Updated 9 months ago
- Lightweight type-1 hypervisor offering a foundation for building advanced security-focused functionality.☆282Feb 16, 2026Updated last month
- POC usermode <=> kernel communication via ALPC.☆72Jun 6, 2024Updated last year
- ☆15May 2, 2024Updated last year
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆262Updated this week
- Two PoC of accessing process virtual memory via NT Kernel☆22Jun 25, 2021Updated 4 years ago
- ☆13Aug 24, 2022Updated 3 years ago
- windows kernel pagehook☆42Oct 30, 2022Updated 3 years ago
- A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.☆55Sep 20, 2022Updated 3 years ago
- Windows CIFS/SMB packet generation and SMB networking library☆12Aug 25, 2020Updated 5 years ago
- Exploit POC for CVE-2024-36877☆48Aug 14, 2024Updated last year
- Windows X64 mode use seh in manual mapped dll or manual mapped sys☆80Oct 10, 2022Updated 3 years ago
- sounds ud idk☆18Jun 29, 2024Updated last year
- ☆63Jul 31, 2022Updated 3 years ago
- VEH debug plugin☆13Apr 28, 2022Updated 3 years ago
- Archive R/W into any protected process by changing the value of KTHREAD->PreviousMode☆162Jul 31, 2022Updated 3 years ago
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆61Oct 19, 2024Updated last year
- Port of zentool to Windows☆27Mar 7, 2025Updated last year
- The sequel to Voyager☆100Aug 21, 2024Updated last year
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆25Mar 26, 2020Updated 5 years ago
- Intel learning hypervisor and some extend function☆23Aug 23, 2025Updated 7 months ago
- Code Injection, Inject malicious payload via pagetables pml4.☆242Jul 7, 2021Updated 4 years ago