kkent030315 / libinject
A dll injector static library for Win x64 processes with handle elevation supported
☆12Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for libinject
- x64 Windows privilege elevation using anycall☆20Updated 3 years ago
- A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing…☆12Updated 4 years ago
- Two PoC of accessing process virtual memory via NT Kernel☆24Updated 3 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆30Updated 5 years ago
- Some crazy PE executables protection kernel driver☆18Updated 4 years ago
- A proof-of-concept to abuse EQU8 anti-cheat kernel driver☆14Updated 3 years ago
- Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address☆24Updated 2 years ago
- XOrCryptEx lightweight C Utility/Algorithm☆11Updated 2 years ago
- An example code of CiGetCertPublisherName☆14Updated 2 years ago
- Fake Timestamps of Driver Certificates while keeping validity.☆16Updated 3 years ago
- RET / JMP RBX call spoofer☆9Updated 5 years ago
- x64 assembler library☆32Updated 5 months ago
- collection of code snippets,windbg,python scripts and resources☆13Updated 2 years ago
- Injector with kernel power☆16Updated 3 years ago
- ☆26Updated last year
- Hijack NotifyRoutine for a kernelmode thread☆41Updated 2 years ago
- Bypassing kernel patch protection runtime☆19Updated last year
- ☆15Updated 4 years ago
- win32/x64 obfuscate framework☆32Updated 5 years ago
- Dump mapped PE files from memory to the disk☆17Updated 5 years ago
- Stealing signatures from pe files☆15Updated 2 years ago
- Bypasses for Windows kernel callbacks PatchGuard protection☆42Updated 3 years ago
- UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.☆44Updated last year
- A C++ syscall ID extractor for Windows. Developed, debugged and tested on 20H2.☆18Updated 3 years ago
- A benign application used to demonstrate an EDR detection. This version is procedural (i.e., not object-oriented).☆0Updated 2 years ago