memflow / memflow
physical memory introspection framework
☆744Updated last month
Related projects: ⓘ
- A library to read/write memory to Windows on KVM☆263Updated 4 years ago
- LeechCore - Physical Memory Acquisition Library & The LeechAgent Remote Memory Acquisition Agent☆488Updated last week
- Framework to test any Anti-Cheat☆786Updated 2 years ago
- Literally, the perfect injector.☆839Updated last year
- Access without a real handle☆869Updated 3 years ago
- Kernel Driver Utility☆1,912Updated 5 months ago
- PoC EFI runtime driver for memory r/w & kdmapper fork☆485Updated 3 years ago
- Cheat that uses a driver instead WinAPI for Reading / Writing memory.☆735Updated 3 years ago
- Manual mapping without creating any threads, with rw only access☆652Updated 4 years ago
- Reversing EasyAntiCheat.☆512Updated 5 years ago
- Disable PatchGuard and Driver Signature Enforcement at boot time☆1,775Updated 8 months ago
- Dumping processes using the power of kernel space !☆968Updated 10 months ago
- Hook system calls on Windows by using Kaspersky's hypervisor☆1,087Updated 5 months ago
- DLL scatter manual mapper☆705Updated 3 years ago
- Windows kernel hacking framework, driver template, hypervisor and API written on C++☆1,653Updated 10 months ago
- kernel mode anti cheat☆421Updated last month
- UEFI bootkit for driver manual mapping☆511Updated 8 months ago
- Driver that uses network sockets to communicate with client and read/ write protected process memory.☆412Updated 5 years ago
- VivienneVMM is a stealthy debugging framework implemented via an Intel VT-x hypervisor.☆774Updated 4 years ago
- C++ graphics kernel subsystem hook☆472Updated 3 years ago
- Turn off PatchGuard in real time for win7 (7600) ~ later☆974Updated 2 years ago
- KDMapper is a simple tool that exploits iqvw64e.sys Intel driver to manually map non-signed drivers in memory☆1,926Updated 2 months ago
- X86 Mutation Engine with Portable Executable compatibility.☆440Updated 2 years ago
- A bunch of Windows anti-debugging tricks for x86 and x64.☆753Updated 3 years ago
- Monitoring and controlling kernel API calls with stealth hook using EPT☆1,138Updated 2 years ago
- driver manual mapper (outdated/for educational purposes)☆92Updated 5 years ago
- get_module, read/write mem, mouse emulation☆295Updated 4 years ago
- Simple x86-64 VT-x Hypervisor with EPT Hooking☆833Updated last year
- proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC☆1,096Updated 4 months ago
- ☆515Updated this week
- Efi Driver Access is a simply project to load a driver during system boot with the idea to give the user kernel access for read/write mem…☆360Updated last year