☆29Sep 17, 2024Updated last year
Alternatives and similar repositories for Kernel-Snooping
Users that are interested in Kernel-Snooping are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- SV-Assistant☆20Jan 31, 2024Updated 2 years ago
- Hijack NotifyRoutine for a kernelmode thread☆41Jun 4, 2022Updated 3 years ago
- ☆14Mar 8, 2019Updated 7 years ago
- Silence EDRs by removing kernel callbacks☆238Dec 7, 2020Updated 5 years ago
- neat way to detect memory read using nt layer function.☆13Aug 4, 2023Updated 2 years ago
- Exploit vulnerabilities in NeacSafe64.sys to achieve privilege escalation and kernel-mode shellcode execution☆21Apr 2, 2025Updated 11 months ago
- Using NtCreateFile and NtDeviceIoControlFile to realize the function of winsock(利用NtCreateFile和NtDeviceIoControlFile 实现winsock的功能)☆128Sep 9, 2022Updated 3 years ago
- Files for http://blog.deniable.org/posts/windows-callbacks/☆83Feb 26, 2022Updated 4 years ago
- A simple tool for enumerating dynamic endpoints on a DCE/RPC remote or local endpoint mapper.☆15Oct 9, 2020Updated 5 years ago
- DLL Unhooking☆12Mar 26, 2021Updated 4 years ago
- 参考taviso的代码逆向一下mpengine.dll☆20Jun 30, 2022Updated 3 years ago
- x64 assembler library☆31Jun 7, 2024Updated last year
- Using process hacker, i noticed that BANDICAM has a "FULLSCREEN" window which has all the properties to be hijacked to render our stuff (…☆13Jan 9, 2026Updated 2 months ago
- This is the AV ("protection solution") used for my windows 10 rootkit main project. this includes the installer stager program, a service…☆13May 2, 2024Updated last year
- Bypasses for Windows kernel callbacks PatchGuard protection☆44Aug 15, 2021Updated 4 years ago
- Dont Call Me Back - Dynamic kernel callback resolver. Scan kernel callbacks in your system in a matter of seconds!☆250Jul 9, 2024Updated last year
- Monitor ETW events for Windows process mitigation policies, with stack traces☆31Oct 7, 2022Updated 3 years ago
- x64HOOK库☆18Jan 14, 2020Updated 6 years ago
- break link between dll and it file on disk☆12Sep 2, 2024Updated last year
- Open-source EDR kernel-component for system monitoring and DLL injection☆33Nov 14, 2020Updated 5 years ago
- For Example. See Miro's Blog☆30Nov 26, 2022Updated 3 years ago
- ☆14May 10, 2021Updated 4 years ago
- squad internal simple base☆18Nov 29, 2023Updated 2 years ago
- A drop-in replacement for the C++ STL for kernel mode Windows drivers. The goal is to have implementations for things like the standard a…☆33Jul 12, 2016Updated 9 years ago
- ☆51Sep 18, 2020Updated 5 years ago
- Frida Memory Dumper and Scanner for native Linux apps and Windows apps☆20Oct 18, 2022Updated 3 years ago
- Bypassing EasyAntiCheat.sys self-integrity by abusing call hierarchy☆82Oct 6, 2022Updated 3 years ago
- ☆24Mar 4, 2019Updated 7 years ago
- ☆16Mar 1, 2019Updated 7 years ago
- Panda - is a set of utilities used to research how PsExec encrypts its traffic.☆12Apr 20, 2021Updated 4 years ago
- Wrapper for VMProtect Library (only MSVC)☆35Jul 6, 2018Updated 7 years ago
- direct systemcalls with a modern c++20 interface.☆45Jan 6, 2023Updated 3 years ago
- ☆39Oct 29, 2020Updated 5 years ago
- pass game protect☆12Apr 26, 2014Updated 11 years ago
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆83Dec 21, 2022Updated 3 years ago
- ☆12Aug 28, 2017Updated 8 years ago
- HackSys Extreme Vulnerable Driver - Various Windows 7 x86 Kernel Exploits☆22Jan 13, 2018Updated 8 years ago
- Use RTCore64 to map your driver on windows 11.☆156May 9, 2025Updated 10 months ago
- Another method to anti ThreadHideFromDebugger☆38Mar 5, 2019Updated 7 years ago