Windows kernel samples
☆257Apr 28, 2019Updated 6 years ago
Alternatives and similar repositories for EasyRing0
Users that are interested in EasyRing0 are comparing it to the libraries listed below
Sorting:
- Manual mapping without creating any threads, with rw only access☆806Oct 29, 2019Updated 6 years ago
- ☆185May 5, 2019Updated 6 years ago
- Kernel Inject DLL☆352Mar 21, 2023Updated 2 years ago
- Driver that uses network sockets to communicate with client and read/ write protected process memory.☆623Feb 22, 2019Updated 7 years ago
- A kernelmode driver swapping a .data pointer in the kernel to perform communication between the kernel and usermode.☆142Oct 20, 2020Updated 5 years ago
- Шаблон полнофункционального драйвера и обёртки над ядерным API☆114Aug 28, 2016Updated 9 years ago
- Loads a signed kernel driver which allows you to map any driver to kernel mode without any traces of the signed / mapped driver.☆385Aug 8, 2021Updated 4 years ago
- Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module☆421Sep 9, 2018Updated 7 years ago
- Stealthy UM <-> KM communication system without creating any system threads, permanent hooks, driver objects, section objects or device o…☆379Mar 15, 2024Updated last year
- A x64 Windows Rootkit using SSDT or Hypervisor hook☆564Jan 4, 2025Updated last year
- A somewhat wide collection of various kernelmode-usermode communication methods in one repository (mainly just for learning purposes).☆384Sep 18, 2019Updated 6 years ago
- Reversing EasyAntiCheat.☆580Apr 19, 2019Updated 6 years ago
- EAC Bypass☆314May 11, 2020Updated 5 years ago
- Kernel mode bypass for BattlEye, EAC☆190Oct 25, 2023Updated 2 years ago
- I've developed a rather effective driver for DLL injection targeting EAC Protected Games, and since i dont care for any notable games uti…☆104Apr 24, 2024Updated last year
- Proof of concept on how to bypass some limitations of a manual mapped driver☆172Oct 24, 2020Updated 5 years ago
- This is a simple project of a driver + usermode.☆169Jan 31, 2022Updated 4 years ago
- driver manual mapper (outdated/for educational purposes)☆115May 17, 2019Updated 6 years ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆388Jul 6, 2022Updated 3 years ago
- kernel-mode TDI client which can send and receive HTTP requests☆56Jun 9, 2018Updated 7 years ago
- a more stable & secure read/write virtual memory for kernel mode drivers☆161Mar 8, 2020Updated 5 years ago
- Kernel LdrLoadDll injector☆264Oct 6, 2018Updated 7 years ago
- Windows kernel hacking framework, driver template, hypervisor and API written on C++☆1,802Nov 12, 2023Updated 2 years ago
- Open source anti cheat☆574Dec 9, 2025Updated 2 months ago
- ☆146Dec 28, 2020Updated 5 years ago
- DLL scatter manual mapper☆812Apr 10, 2021Updated 4 years ago
- Windows inline hooking tool.☆298Oct 7, 2018Updated 7 years ago
- Using Driver Global Injection dll, it can hide DLL modules☆537Jun 28, 2019Updated 6 years ago
- Kernel driver that uses Shared memory to communicate with UserMode☆86Apr 25, 2019Updated 6 years ago
- ☆69Aug 31, 2021Updated 4 years ago
- Intercepting DeviceControl via WPP☆138Nov 18, 2019Updated 6 years ago
- Access without a real handle☆1,039Apr 10, 2021Updated 4 years ago
- Allows you to communicate with the kernel mode to manipulate memory in a stealthy way to avoid kernel anticheats.☆172May 8, 2022Updated 3 years ago
- This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemo…☆632Mar 19, 2019Updated 6 years ago
- Detect removed thread from PspCidTable.☆75Mar 18, 2022Updated 3 years ago
- Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.☆151Feb 12, 2022Updated 4 years ago
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆159Apr 13, 2023Updated 2 years ago
- C++ graphics kernel subsystem hook☆561Jan 11, 2021Updated 5 years ago
- proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC☆1,272May 1, 2024Updated last year