etw hook (syscall/infinity hook) compatible with the latest Windows version of PG
☆22Sep 11, 2024Updated last year
Alternatives and similar repositories for etw_hook
Users that are interested in etw_hook are comparing it to the libraries listed below
Sorting:
- Windows Kernel Security: Memory Integrity Verification with Disk Verification of ntoskrnl.exe☆15Mar 23, 2025Updated 11 months ago
- A small experiment on assigning a processes threads a specific CPU and then blocking it with a high priority thread☆30Sep 24, 2025Updated 5 months ago
- A simple python script to check evil Visual Studio projects☆21Oct 13, 2023Updated 2 years ago
- A collection of insightful projects for Windows.☆19Sep 30, 2016Updated 9 years ago
- ☆51Aug 29, 2024Updated last year
- partially disable patchguard up to win11 21H2☆19Jun 3, 2024Updated last year
- etw hook (syscall/infinity hook) compatible with the latest Windows version of PG☆324Apr 27, 2024Updated last year
- ☆18Jan 14, 2026Updated last month
- Self-cleaning in-memory PICO loader for Crystal Palace. Automatically erases traces and operates entirely in memory for stealthy payload …☆48Nov 2, 2025Updated 4 months ago
- PE文件解析和加壳工具☆18Feb 21, 2023Updated 3 years ago
- 针对windows rootkit的一些检测,分别从进程、端口、文件这三个方面�进行检测。☆21Jan 16, 2025Updated last year
- XEDParse emulator based on asmjit/asmtk.☆21Mar 22, 2024Updated last year
- Minimal header-only C++11 argument parser library for simple command line tools.☆25Feb 2, 2025Updated last year
- Simple program for static hooking dynamic libraries in executable application☆24Jan 15, 2014Updated 12 years ago
- Load a 64-bit DLL into a 32-bit process.☆30Nov 14, 2021Updated 4 years ago
- 一个用来做windows内核hook的框架☆188Apr 29, 2025Updated 10 months ago
- ☆25May 20, 2018Updated 7 years ago
- Reverse SOCKS5 Proxy Written in Rust☆28Mar 9, 2021Updated 4 years ago
- Two sided secure/insecure socket that can do SSL/TLS connections without the need for OpenSSL libraries. It uses the standard WinCrypt mo…☆33Dec 12, 2018Updated 7 years ago
- Manage Shadows Copies via the VSS API using C#, C++, Crystal or Python. Working on Windows 11☆84Jan 26, 2026Updated last month
- MFC Feature Pack for VS2013☆11Jan 10, 2017Updated 9 years ago
- 32 bit process inject shellcode to 32 bit process and 64 bit process☆35May 8, 2023Updated 2 years ago
- ☆30Oct 21, 2022Updated 3 years ago
- Minimal DLL-injection tool.☆37Apr 5, 2016Updated 9 years ago
- ☆82Apr 23, 2024Updated last year
- 基于sunday算法的内存快速搜索,搜索2GB内存只需1秒☆74Dec 13, 2019Updated 6 years ago
- PDB Explorer 是一个能够查看微软 pdb 文件(Program DataBase,程序数据库)的工具,它能够将 pdb 文件中的 struct、union 及 enum 类型的定义以 C/C++ 的语法显示出来,特别适合 Windows 底层研究人员及 DDK …☆38Jun 2, 2015Updated 10 years ago
- A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering☆43Jun 10, 2025Updated 8 months ago
- C++ Code☆11Aug 13, 2019Updated 6 years ago
- A method to Disable DSE using .data ptr hooks☆38Feb 1, 2024Updated 2 years ago
- C/C++ Windows Process Injector for Educational Purposes.☆10Apr 2, 2021Updated 4 years ago
- Open source anti cheat engine☆43Jul 9, 2024Updated last year
- 2022 Updated Kernelmode-Code☆33Mar 23, 2024Updated last year
- WinDbg-ext-MCP bridges your favorite LLM client (like Cursor, Claude, or VS Code) with WinDbg, enabling real-time, AI assisted kernel deb…☆76Sep 10, 2025Updated 5 months ago
- Protect a file from being deleted using windows kernel file system minifilter driver☆39Apr 2, 2021Updated 4 years ago
- (communication detected)a kernel driver for game cheater. includes read&write memory / key&mouse simulator / kernel DWM render / process …☆114May 9, 2025Updated 9 months ago
- websocket-protocol's implementation with multithread synchronization model in C++☆17Jul 23, 2017Updated 8 years ago
- 六爻预测☆11Apr 12, 2018Updated 7 years ago
- Generate Go bindings for shared C libraries.☆15Jul 13, 2024Updated last year