llkbkh / Anti-Rootkit
☆47Updated 2 years ago
Alternatives and similar repositories for Anti-Rootkit:
Users that are interested in Anti-Rootkit are comparing it to the libraries listed below
- ☆27Updated last year
- ☆25Updated 7 years ago
- For Example. See Miro's Blog☆30Updated 2 years ago
- Hook system calls, context switches, page faults and more.☆34Updated 5 years ago
- ☆53Updated 2 years ago
- Some garbage drivers written for getting started☆64Updated 5 years ago
- Another method to anti ThreadHideFromDebugger☆36Updated 6 years ago
- Windows kernel drivers simple HTTP library for modern C++☆42Updated 6 years ago
- 以前改进的cheat内核通信模块,现在EAC Detected,现在发出来☆52Updated 3 years ago
- The driver STL library used by myself☆12Updated 2 years ago
- a monitoring windows driver calls kernel api tools☆103Updated 8 months ago
- APC注入DLL内核层☆23Updated 6 years ago
- first commit☆58Updated 4 years ago
- ☆69Updated 3 years ago
- A poc that abuses Enclave☆37Updated 2 years ago
- ☆15Updated 5 months ago
- GUI Kernel driver process protect tool☆36Updated 6 years ago
- Small class to parse debug info from PEs, download their respective PDBs from the Microsoft Public Symbol Server and calculate RVAs of fu…☆43Updated 2 years ago
- a simple intel vt code both support x86 & x64. PatchGuard monitor.☆75Updated 3 years ago
- windows kernel pagehook☆39Updated 2 years ago
- ☆34Updated 2 years ago
- Emulate Drivers in RING3 with self context mapping or unicorn☆28Updated 3 months ago
- intel vt-x hypervisor ept☆25Updated 4 years ago
- This project can bypass most of the AC except for some perverts that enable VT to monitor page tables☆40Updated 10 months ago
- ☆23Updated 7 years ago
- EtwHook for win7-win11;☆22Updated 2 years ago
- Example of hijacking system calls via function pointer tables☆32Updated 3 years ago
- ☆128Updated 2 years ago
- ☆34Updated 4 years ago
- ☆36Updated 8 years ago