kite03 / echoac-pocLinks
☆144Updated 2 weeks ago
Alternatives and similar repositories for echoac-poc
Users that are interested in echoac-poc are comparing it to the libraries listed below
Sorting:
- manual map unsigned driver over signed memory☆200Updated last year
- Inline syscalls made for MSVC supporting x64 and WOW64☆184Updated 2 years ago
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆158Updated 2 years ago
- Crashes ida on static analyses.☆105Updated 4 months ago
- State of the art DLL injector that took 20 minutes to make☆220Updated 2 years ago
- PoC Anti-Rootkit/Anti-Cheat Driver.☆213Updated 4 months ago
- Hooking Windows' exception dispatcher to protect process's PML4☆191Updated 7 months ago
- Bypassing PatchGuard on modern x64 systems☆265Updated 2 years ago
- Abusing nvidia driver (nvoclock.sys) for physical/virtual memory and control register manipulation.☆273Updated 2 years ago
- ☆314Updated 3 months ago
- Load your driver like win32k.sys☆254Updated 3 years ago
- Simple Kernelmode DLL Injector with Manual mapping☆310Updated last year
- Fully working kernel-mode VAC bypass☆84Updated 6 months ago
- Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…☆129Updated 2 years ago
- SMM driver/rootkit for platform memory access with R3 <-> R0 <-> R-2 communication.☆91Updated 10 months ago
- Using Windows' own bootloader as a shim to bypass Secure Boot☆182Updated last year
- Makes IDA (most versions) to crash upon opening it.☆99Updated 11 months ago
- Kernel Level NMI Callback Blocker☆116Updated 11 months ago
- A mapper that maps shellcode into loaded large page drivers☆293Updated 3 years ago
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆224Updated 10 months ago
- Loads a signed kernel driver which allows you to map any driver to kernel mode without any traces of the signed / mapped driver.☆353Updated 4 years ago
- Using CVE-2023-21768 to manual map kernel mode driver☆192Updated 2 years ago
- Exploit MsIo vulnerable driver☆112Updated 4 years ago
- Windows Kernel inject (no module no thread)☆278Updated 2 years ago
- Kernel driver loader using vulnerable gigabyte driver (https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vu…☆256Updated 3 years ago
- Kernel DLL Injector using NX Bit Swapping and VAD hide for hiding injected DLL☆217Updated 4 years ago
- x86 PE Mutator☆225Updated 2 years ago
- Archive R/W into any protected process by changing the value of KTHREAD->PreviousMode☆159Updated 3 years ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆339Updated 3 years ago
- load unsigned kernel-driver by patching dse in 248 lines☆130Updated last year