muxq / hellorpc
windows rpc 使用MIDL+RPC实现HelloWorld
☆22Updated 6 years ago
Alternatives and similar repositories for hellorpc:
Users that are interested in hellorpc are comparing it to the libraries listed below
- 粗暴地枚举管理内核的WFP对象。 Manage kernel WFPs in a brutal way.☆26Updated 7 years ago
- For Example. See Miro's Blog☆30Updated 2 years ago
- PEBFake(修改PEB 伪装当前进程路径、参数等)☆50Updated 4 years ago
- ☆34Updated 4 years ago
- ☆26Updated 7 years ago
- 卓然主动防御源码(可执行文件+完整源码+完整作品报告)☆15Updated 5 years ago
- Static Library For Windows Drivers☆33Updated this week
- x86/x64 dll injector☆29Updated 2 years ago
- 参考taviso的代码逆向一下mpengine.dll☆19Updated 2 years ago
- Data and structures regarding the research done on WdFilter☆12Updated 4 years ago
- ☆40Updated 5 years ago
- intel vt-x hypervisor ept☆25Updated 4 years ago
- Open Source Libraries Collection☆24Updated 9 years ago
- enable libemu run pe file and add some good modify☆14Updated 6 years ago
- Protected Process Light Library☆18Updated 4 years ago
- Easily hook WIN32 x64 functions☆18Updated this week
- Demo List cm/ps/ob/minifilter callback And Patch/Bypass it☆28Updated 7 years ago
- ☆28Updated 4 years ago
- A working version of this tutorial: https://docs.microsoft.com/en-us/windows/desktop/rpc/tutorial☆16Updated 5 years ago
- Example of hijacking system calls via function pointer tables☆32Updated 3 years ago
- map driver to memory☆25Updated 6 years ago
- Detects if a Kernel mode debugger is active by reading the value of KUSER_SHARED_DATA.KdDebuggerEnabled. It is a high level and portable …☆23Updated 7 years ago
- ☆24Updated 5 years ago
- What makes it page☆17Updated 2 years ago
- ☆27Updated 5 years ago
- Monitor ETW events for Windows process mitigation policies, with stack traces☆31Updated 2 years ago
- Rookit and anti rookit on Windows platform☆12Updated 9 months ago
- windows inlinehook R3 R0☆11Updated 6 years ago
- 编译时混淆字符串,以确保生成的二进制PE不会暴漏明文字符串。(C++ 14 及以上)☆27Updated 3 years ago
- A poc of embedding x64 code into x86 PE file☆17Updated 5 years ago