maltsevda / WinProg

Related projects ⓘ

Alternatives and complementary repositories for WinProg

• nelfo / Milfuscator
  x86 PE Mutator
  ☆212Updated last year
• samshine / ScyllaHideDetector2
  Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.
  ☆24Updated 5 years ago
• Hemogl0bin / drvscanner
  Scan for potentially vulnerable drivers
  ☆80Updated 2 years ago
• zer0condition / ZeroThreadKernel
  Recursive and arbitrary code execution at kernel-level without a system thread creation
  ☆154Updated last year
• XShar / Windows_Kernel_Programming
  Windows Kernel Programming (Обзорный перевод книги)
  ☆55Updated 3 years ago
• SamuelTulach / RwxMeme
  State of the art DLL injector that took 20 minutes to make
  ☆207Updated last year
• gmh5225 / CallMeWin32kDriver
  Load your driver like win32k.sys
  ☆246Updated 2 years ago
• adamhlt / Basic-Rootkit
  POC Ring3 Windows Rootkit (x86 / x64) - Hide processes and files
  ☆52Updated last year
• SamuelTulach / nullmap
  Using CVE-2023-21768 to manual map kernel mode driver
  ☆176Updated last year
• VollRagm / lpmapper
  A mapper that maps shellcode into loaded large page drivers
  ☆229Updated 2 years ago
• NtRaiseHardError / NINA
  NINA: No Injection, No Allocation x64 Process Injection Technique
  ☆196Updated 4 years ago
• Barracudach / CallStack-Spoofer
  This tool will allow you to spoof the return addresses of your functions as well as system functions.
  ☆416Updated 2 years ago
• notscimmy / pplib
  Elevate a process to be a protected process
  ☆143Updated 5 years ago
• kkent030315 / NoPatchGuardCallback
  x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code
  ☆197Updated 3 years ago
• MellowNight / 2D-Injector
  Hiding unsigned DLL inside a signed DLL
  ☆309Updated last year
• ccdescipline / CInject
  Windows Kernel inject (no module no thread)
  ☆265Updated 2 years ago
• XaFF-XaFF / Shellcodev
  Shellcodev is a tool designed to help and automate the process of shellcode creation.
  ☆100Updated last year
• YouNeverKnow00 / Kernelmode-DLL-Injector
  Simple Kernelmode DLL Injector with Manual mapping
  ☆238Updated 11 months ago
• kkent030315 / PageTableInjection
  Code Injection, Inject malicious payload via pagetables pml4.
  ☆226Updated 3 years ago
• Rhydon1337 / windows-kernel-dll-injector
  Kernel mode to user mode dll injection
  ☆221Updated 3 years ago
• weak1337 / BE-Shellcode
  Code for Battleyes shellcode
  ☆212Updated 3 years ago
• 0x25bit / DarkCrypter
  A Simple AES Command Line Crypter
  ☆35Updated last year
• kkent030315 / anycall
  x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration
  ☆226Updated 2 years ago
• Deputation / hygieia
  Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.
  ☆135Updated 2 years ago
• Idov31 / rustomware
  Simple ransomware written in Rust. Part of the building a rustomware blog post.
  ☆32Updated last year
• zer0condition / NVDrv
  Abusing nvidia driver (nvoclock.sys) for physical/virtual memory and control register manipulation.
  ☆245Updated last year
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆52Updated 7 months ago
• thesecretclub / SandboxBootkit
  Bootkit for Windows Sandbox to disable DSE/PatchGuard.
  ☆261Updated last month
• alexvogt91 / Kernel-dll-injector
  Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module
  ☆415Updated 6 years ago
• guidedhacking / anti-debugging
  Anti-debugging techniques on a (bad looking) Win32 application.
  ☆234Updated 8 months ago