Alternatives and similar repositories for Mhyprot2DrvControl

Users that are interested in Mhyprot2DrvControl are comparing it to the libraries listed below

• kkent030315 / evil-mhyprot-cli
  A PoC for Mhyprot2.sys vulnerable driver that allowing read/write memory in kernel/user via unprivileged user process.
  ☆335Updated 3 years ago
• kkent030315 / libmhyprot
  A static library, wrapper for mhyprot vulnerable driver, execute exploits and tests
  ☆129Updated 4 years ago
• HadesW / mhy_exp
  Mhy Exp (exploit signed driver)
  ☆140Updated 2 years ago
• itm4n / PPLcontrol
  Controlling Windows PP(L)s
  ☆317Updated last year
• wanttobeno / FuckCertVerifyTime
  一些使用过期或者注销证书的技术
  ☆238Updated 5 years ago
• khang06 / mhynot2
  A user-mode emulator for the mhyprot2.sys driver
  ☆114Updated 2 years ago
• smallzhong / hide_execute_memory
  隐藏可执行内存
  ☆249Updated 2 weeks ago
• 0xlane / BypassUAC
  Use ICMLuaUtil to Bypass UAC!
  ☆548Updated 5 years ago
• vi3t1 / qq-tim-elevation
  CVE-2023-34312
  ☆421Updated last year
• FiYHer / kernel_window_hide
  内核级别隐藏指定窗口
  ☆307Updated 3 years ago
• fengjixuchui / gdrv-loader
  Kernel driver loader using vulnerable gigabyte driver (https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vu…
  ☆242Updated 3 years ago
• utoni / PastDSE
  DSE bypass using a leaked cert and adjusting the current clock.
  ☆150Updated 2 years ago
• Hagrid29 / PELoader
  PE loader with various shellcode injection techniques
  ☆407Updated 2 years ago
• hasherezade / dll_injector
  A simple commandline injector using classic DLL injection
  ☆150Updated 2 years ago
• keowu / mhyprot2
  Reverse engineering Genshin Impact anticheat to study how anticheats work on the Windows operating system.
  ☆103Updated 3 years ago
• aaaddress1 / wowInjector
  PoC: Exploit 32-bit Thread Snapshot of WOW64 to Take Over $RIP & Inject & Bypass Antivirus HIPS (HITB 2021)
  ☆161Updated 3 years ago
• lainswork / shellcode-factory
  shellcode 生成框架
  ☆262Updated 3 years ago
• ryan-weil / HideProcessHook
  DLL that hooks the NtQuerySystemInformation API and hides a process name
  ☆288Updated 2 years ago
• PIKACHUIM / FakeSign
  自建时间戳服务器实现伪签名驱动证书 Implementing Pseudo Signature with Self-Sign Timestamp Servers
  ☆299Updated 3 weeks ago
• Flangvik / SharpDllProxy
  Retrieves exported functions from a legitimate DLL and generates a proxy DLL source code/template for DLL proxy loading or sideloading
  ☆795Updated 4 years ago
• leeza007 / evil-mhyprot-cli
  A PoC for vulnerable driver "mhyprot" that allows us to read/write memory in kernel/user from usermode.
  ☆161Updated 4 years ago
• hasherezade / process_ghosting
  Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted fi…
  ☆658Updated last year
• FiYHer / driver_callback_bypass_1909
  研究和移除各种内核回调,在anti anti cheat的路上越走越远
  ☆175Updated 2 years ago
• LloydLabs / delete-self-poc
  A way to delete a locked file, or current running executable, on disk.
  ☆524Updated 9 months ago
• ZanderChang / anti-sandbox
  Windows对抗沙箱和虚拟机的方法总结
  ☆392Updated 5 years ago
• Wh04m1001 / CVE-2023-21752
  ☆314Updated 2 years ago
• TimelifeCzy / Shell_Protect
  VM一键加壳/脱壳，全压缩，反调试等
  ☆302Updated 10 months ago
• YuriSizuku / win-MemoryModule
  A flexible PE loader, loading module in memory. Most of the functions can be inline, compatible for shellcode.
  ☆196Updated 2 months ago
• hakaioffsec / CVE-2024-21338
  Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.
  ☆292Updated last year
• mai1zhi2 / SysWhispers2_x86
  X86 version of syswhispers2 / x86 direct system call
  ☆325Updated 4 years ago