keowu / birosca

Related projects: ⓘ

• Ahora57 / RaceCondition
  sample bypass anti-anti-debug tool by race condition
  ☆23Updated 2 years ago
• ekknod / efi-monitor
  just proof of concept. hooking MmCopyMemory PG safe.
  ☆60Updated 10 months ago
• yubie-re / ida-jm-xorstr-decrypt-plugin
  Attempts to decrypt JM Xorstr in some x64 binaries
  ☆46Updated last year
• ekknod / MouseClassServiceCallbackTrick
  ☆46Updated last year
• Deputation / kernel_payload_comms
  A proof of concept demonstrating communication via mapped shared memory structures between a user-mode process and a kernel-mode payload …
  ☆73Updated 3 years ago
• efidemon69 / kdmapper-dumper
  KDM Is a driver that will dumps every drivers that got manually mapped with kdmapper.
  ☆48Updated 2 years ago
• nelfo / PGHooker
  PAGE_GUARD based hooking library
  ☆38Updated 2 years ago
• mibho / x64dbg-vmp-trace
  unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…
  ☆49Updated 7 months ago
• Ahora57 / VMP_UTIL
  PoC over some VMP features
  ☆12Updated 7 months ago
• sodareverse / TDE
  A devirtualization engine for Themida.
  ☆81Updated 6 months ago
• mathisvickie / KMAC
  Some usefull info when reverse engineering Kernel Mode Anti-Cheat
  ☆66Updated last year
• Ahora57 / Unabomber
  Improved VMP Idea(detect anti-anti-debug tools by bug)
  ☆18Updated last year
• charliewolfe / PointerGuard
  PointerGuard is a proof-of-concept tool used to create 'guarded' pointers which disguise pointer addresses, monitor reads/writes, and pre…
  ☆48Updated 2 years ago
• skadro-official / PE-Dump-Fixer
  PE-Dump-Fixer
  ☆100Updated 4 years ago
• kkent030315 / anymapper
  x64 Windows kernel driver mapper, inject unsigned driver using anycall
  ☆103Updated 7 months ago
• Azvanzed / PresentInjector
  ☆53Updated this week
• EBalloon / EasyAntiCheat-SRC
  ☆39Updated 2 years ago
• backengineering / VDM
  Library to manipulate drivers that expose a physical memory read/write primitive.
  ☆20Updated last year
• 0xf1a / DSMM
  Discarded Section Manual Map
  ☆65Updated 4 years ago
• SamuelTulach / EmuAuth
  ☆20Updated this week
• 67-6f-64 / AntiOreans-CodeDevirtualizer
  ☆20Updated last year
• weak1337 / BEShellcodeDumper
  ☆40Updated 2 years ago
• Hypercall / FakeEye
  A lightweight BattlEye emulator of the launcher
  ☆57Updated 2 years ago
• s0ngidong3 / TPM-SPOOFER
  ☆26Updated 9 months ago
• Ahora57 / AmogusPlugin
  ☆82Updated this week
• xu-Wan / HypercallPageHook
  POC Hook of nt!HvcallCodeVa
  ☆49Updated last year
• illegal-instruction-co / ThreadIn
  Freeze target threads (external - internal ) by avoiding SuspendThread detections. Or access registers from start address.
  ☆29Updated 5 months ago
• Ahora57 / CS-GO-Hack-2023-Aim-Esp-Wallhack-Private-2023
  ☆62Updated this week
• Oliver-1-1 / SmmInfect
  ☆33Updated this week
• KANKOSHEV / Detect-MouseClassServiceCallback
  mouseclassservicecallback detection via hook
  ☆46Updated 2 years ago