Figuring out the cause of a handle downgrade
☆24Dec 13, 2022Updated 3 years ago
Alternatives and similar repositories for handle_exploration
Users that are interested in handle_exploration are comparing it to the libraries listed below
Sorting:
- ☆68Dec 17, 2020Updated 5 years ago
- Data Obfuscation for C/C++ Code Based on Residue Number Coding (RNC)☆24May 20, 2021Updated 4 years ago
- ShellcodeVM☆15Jun 20, 2016Updated 9 years ago
- Allows you to parse all messages sent to DbgPrint without any process interaction.☆32Apr 8, 2020Updated 5 years ago
- NT reversal☆25Jul 12, 2018Updated 7 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆240Nov 6, 2019Updated 6 years ago
- RISC-V Disassembler☆18Aug 25, 2020Updated 5 years ago
- ☆31Jan 12, 2022Updated 4 years ago
- kernel driver used to monitor the activity of BadlionAnticheat.sys by patching its IAT☆32Jul 9, 2021Updated 4 years ago
- A simple x86_64 AMD-v hypervisor type-2 Programmed with C++, with soon to be added syscall hooks. [W.I.P]☆104Aug 3, 2023Updated 2 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆66Apr 4, 2020Updated 5 years ago
- ☆23Oct 28, 2020Updated 5 years ago
- ☆17Feb 29, 2020Updated 6 years ago
- API monitoring via return-hijacking thunks; works without information about target function prototypes.☆117May 26, 2020Updated 5 years ago
- My articles for Paged Out! #2☆17Nov 20, 2019Updated 6 years ago
- .lib file for linking against the NT CRT☆19Mar 18, 2022Updated 3 years ago
- by others☆40Jan 28, 2018Updated 8 years ago
- Communication via callback☆73Oct 9, 2019Updated 6 years ago
- A branch-monitor-based solution for process monitoring.☆138Feb 9, 2020Updated 6 years ago
- A copy of my Mathematics and Computer Engineering B.Sc. thesis☆20Dec 8, 2020Updated 5 years ago
- Multicore x64 kernel with a focus on introspection and debugging capabilities.☆64Jun 27, 2024Updated last year
- Lightweight WINAPI tracing with Pin☆27Aug 22, 2019Updated 6 years ago
- remem is a C++ library designed for memory manipulation, function calling, and pattern scanning. It supports various calling conventions,…☆10Aug 23, 2024Updated last year
- An automatic tool for fixing dumped PE files☆42Jul 28, 2020Updated 5 years ago
- DirectX9 Overlay, C++.☆23Jun 30, 2020Updated 5 years ago
- Black Signature Driver☆24Oct 20, 2023Updated 2 years ago
- Detects if a Kernel mode debugger is active by reading the value of KUSER_SHARED_DATA.KdDebuggerEnabled. It is a high level and portable …☆23Sep 18, 2017Updated 8 years ago
- comparing data of module exports from disk and memory, then caching any differences.☆26Dec 11, 2021Updated 4 years ago
- RVDbg is a debugger/exception handler for Windows processes and has the capability to circumvent anti-debugging techniques. (Cleaner, doc…☆72Sep 5, 2020Updated 5 years ago
- HelloAmdHvPkg is a type-1 research hypervisor for AMD processors.☆106Jun 28, 2020Updated 5 years ago
- A demontration of disassemblers generated by sleigh2rust☆13Nov 25, 2024Updated last year
- ☆10Aug 16, 2019Updated 6 years ago
- ☆10Oct 1, 2024Updated last year
- A framework for lifting ARM32 to LLVM-IR and merging resulting code with LLVM-IR generated from source-code.☆12Oct 20, 2022Updated 3 years ago
- Multiplayer snake game written at a single weekend☆13Jul 10, 2019Updated 6 years ago
- Stealthy Injector that leverages a vulnerable driver and other exploits to remain undetected☆37Dec 10, 2018Updated 7 years ago
- My Personal Kernel-Mode Process dumper☆13Feb 18, 2024Updated 2 years ago
- Kernel mode to user mode injector☆11Mar 31, 2020Updated 5 years ago
- C++ Code+Data Obfuscation Library with Build-Time Polymorphism☆109Mar 8, 2018Updated 7 years ago