kagurazakasanae / Mhyprot2DrvControl
A lib that allows using mhyprot2 driver for enum process modules, r/w process memory and kill process.
☆343Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for Mhyprot2DrvControl
- A PoC for Mhyprot2.sys vulnerable driver that allowing read/write memory in kernel/user via unprivileged user process.☆315Updated 3 years ago
- A static library, wrapper for mhyprot vulnerable driver, execute exploits and tests☆125Updated 4 years ago
- Mhy Exp (exploit signed driver)☆137Updated 2 years ago
- Controlling Windows PP(L)s☆262Updated last year
- 一些使用过期或者注销证书的技术☆190Updated 5 years ago
- 自建时间戳服务器实现伪签名驱动证书 Implementing Pseudo Signature with Self-Sign Timestamp Servers☆189Updated 9 months ago
- Kernel driver loader using vulnerable gigabyte driver (https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vu…☆219Updated 3 years ago
- A PoC for vulnerable driver "mhyprot" that allows us to read/write memory in kernel/user from usermode.☆161Updated 4 years ago
- Use ICMLuaUtil to Bypass UAC!☆490Updated 4 years ago
- 内核级别隐藏指定窗口☆298Updated 2 years ago
- A simple commandline injector using classic DLL injection☆137Updated 2 years ago
- 隐藏可执行内存☆245Updated 8 months ago
- 将shellcode注入dwm.exe以进行屏幕截取☆296Updated 2 years ago
- shellcode 生成框架☆239Updated 2 years ago
- PE loader with various shellcode injection techniques☆378Updated 2 years ago
- ☆452Updated 4 years ago
- DSE bypass using a leaked cert and adjusting the current clock.☆133Updated 2 years ago
- A flexible PE loader, loading module in memory. Most of the functions can be inline, compatible for shellcode.☆170Updated 3 weeks ago
- 火绒剑独立版☆326Updated 4 months ago
- Signtool for expired certificates☆454Updated last year
- Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThrea…☆936Updated 4 months ago
- blacksun framework for QEMU/KVM game cheat development☆215Updated last year
- Reverse engineering Genshin Impact anticheat to study how anticheats work on the Windows operating system.☆98Updated 2 years ago
- 研究和移除各种内核回调,在anti anti cheat的路上越走越远☆167Updated 2 years ago
- Radical Windows ARK☆206Updated last week
- Windows Anti-Rootkit Tool☆462Updated last week
- HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.☆623Updated last year
- SuperDllHijack:A general DLL hijack technology, don't need to manually export the same function interface of the DLL, so easy! 一种通用Dll劫持技…☆895Updated 3 years ago
- Retrieves exported functions from a legitimate DLL and generates a proxy DLL source code/template for DLL proxy loading or sideloading☆731Updated 4 years ago