Function hooks in Windows NT Kernel
☆26Oct 13, 2020Updated 5 years ago
Alternatives and similar repositories for EvilHooker
Users that are interested in EvilHooker are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Kernel Cheat for Games that use Modern AntiCheat EAC, Vanguard, Battleye etc☆12Dec 2, 2023Updated 2 years ago
- This driver hooks a device object for ioctl and uses mdls to allocate physical pages and manually injects an entry into a process's page …☆15Feb 14, 2023Updated 3 years ago
- X11 + GLFW + Dear ImGUI Overlay☆13Oct 3, 2023Updated 2 years ago
- Two PoC of accessing process virtual memory via NT Kernel☆22Jun 25, 2021Updated 4 years ago
- windows kernel pagehook☆42Oct 30, 2022Updated 3 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆25Mar 26, 2020Updated 6 years ago
- External shellcode wrapper using naked functions to automatically generate payloads☆15Aug 13, 2020Updated 5 years ago
- Swap control lioctl with trampoline recording in the .text section☆13Jul 1, 2021Updated 4 years ago
- NT reversal☆25Jul 12, 2018Updated 7 years ago
- A dll injector static library for Win x64 processes with handle elevation supported☆12Mar 28, 2021Updated 5 years ago
- i stole this from some guys private repo on github☆58Jul 11, 2021Updated 4 years ago
- ☆15Feb 5, 2021Updated 5 years ago
- a dumb rpm/wpm example driver☆15Jun 7, 2021Updated 4 years ago
- x64 Windows privilege elevation using anycall☆22May 28, 2021Updated 4 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- hooking KiUserApcDispatcher☆27Apr 3, 2017Updated 8 years ago
- allowing um r/w through km from um ioctl ™☆11Jan 2, 2022Updated 4 years ago
- UM-KM Communication using registry callbacks☆39Jun 8, 2020Updated 5 years ago
- This utility allows you to lock every available memory regions of an arbitrary process into its working set.☆69May 6, 2023Updated 2 years ago
- Hooking Heavens Gate in a weekend☆13Jan 1, 2022Updated 4 years ago
- A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing…☆14Nov 8, 2020Updated 5 years ago
- Various shellcodes☆12Sep 1, 2020Updated 5 years ago
- NT AUTHORITY\SYSTEM☆44Jul 8, 2020Updated 5 years ago
- External memory hacking class☆25Aug 6, 2023Updated 2 years ago
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- ☆23May 28, 2021Updated 4 years ago
- Source code on the 1.44MB 3.5 floppy accompanying the Windows NT File System Internals book.☆20Jul 31, 2019Updated 6 years ago
- ☆75Dec 17, 2019Updated 6 years ago
- Extended library for using direct system calls on windows☆17Feb 6, 2022Updated 4 years ago
- A method to Disable DSE using .data ptr hooks☆40Feb 1, 2024Updated 2 years ago
- A simple present scene, kernel allocation injector.☆27Jun 12, 2022Updated 3 years ago
- Rendering on external windows via hijacking thread contexts, with notes on ValidateHwnd☆14Jul 9, 2020Updated 5 years ago
- A kernel module dumper for Windows x64 using mhyprot vulnerable driver☆36Oct 26, 2020Updated 5 years ago
- manually map driver for a signed driver memory space☆176Mar 11, 2021Updated 5 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Simple memory obfuscator.☆24Jul 21, 2022Updated 3 years ago
- A library to manipulate physical memory from usermode.☆303Sep 5, 2023Updated 2 years ago
- r0akmap is a PoC driver manual mapper based on r0ak☆37Aug 18, 2018Updated 7 years ago
- Driver demonstrating how to register a DPC to asynchronously wait on an object☆51Jan 15, 2021Updated 5 years ago
- External memory library for Windows.☆55May 1, 2022Updated 3 years ago
- An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples☆74Apr 11, 2022Updated 3 years ago
- ☆84Aug 26, 2024Updated last year