miketestz / ScyllaHide_VMPHeavensgateBypass
Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide
☆19Updated last year
Alternatives and similar repositories for ScyllaHide_VMPHeavensgateBypass:
Users that are interested in ScyllaHide_VMPHeavensgateBypass are comparing it to the libraries listed below
- Kernel Level NMI Callback Blocker☆55Updated 4 months ago
- VMP Mutation API Fix☆39Updated 2 years ago
- POC Hook of nt!HvcallCodeVa☆50Updated last year
- UM-KM Communication using registry callbacks☆39Updated 4 years ago
- Illustrates the concept of return address spoofing, and how it is used.☆13Updated 4 years ago
- Adopted SRL-6 mouse movement to C++☆30Updated 3 years ago
- Code example of detecting open process handles to our process (C/C++, Windows)☆13Updated 2 months ago
- A Dynamic Study Vmprotect 1.x-1.9X Unpacking Toolkit, Recovery OEP, FIX PE, IAT and bypass protection with custom Loader and interceptor …☆30Updated last year
- ☆49Updated 2 years ago
- Old way for blocking NMI interrupts☆25Updated 2 years ago
- Bypass using kernel driver (not finish).☆19Updated last year
- ☆28Updated last year
- ☆32Updated last year
- ☆19Updated 2 years ago
- ☆43Updated 4 years ago
- Single header code that sets any section's page to No Access☆11Updated 2 years ago
- Disable NMI Callbacks with Kernelmode Driver☆15Updated last year
- ☆18Updated 2 years ago
- A project on the Unicorn emulator to emulate the code of Pe files in windows☆21Updated 4 months ago
- PoC over some VMP features☆18Updated 11 months ago
- 将驱动映射到会话空间☆34Updated 2 years ago
- Library to manipulate drivers that expose a physical memory read/write primitive.☆24Updated last year
- A Vulnerable PatchGuard Exploit that can be used to disable PatchGuard on Runtime.☆15Updated 7 months ago
- PE Header (.rdata,.data,.text) obsfucation☆34Updated 2 years ago
- ☆40Updated 2 years ago