nelfo / PGHooker
PAGE_GUARD based hooking library
☆43Updated 2 years ago
Alternatives and similar repositories for PGHooker:
Users that are interested in PGHooker are comparing it to the libraries listed below
- hidden_syscall - syscaller without using syscall instruction in code☆61Updated 2 years ago
- ntoskrnl .data hooks for UM-KM communication☆40Updated 11 months ago
- Compileable POC of namazso's x64 return address spoofer.☆51Updated 4 years ago
- Freeze target threads (external - internal ) by avoiding SuspendThread detections. Or access registers from start address.☆32Updated last year
- POC Hook of nt!HvcallCodeVa☆51Updated last year
- Handling C++ & __try exceptions without the need of built-in handlers.☆70Updated 3 years ago
- Mapping your code on a 0x1000 size page☆72Updated 2 years ago
- Discarded Section Manual Map☆67Updated 4 years ago
- A poc that abuses Enclave☆38Updated 2 years ago
- ☆46Updated 3 years ago
- ☆29Updated 7 months ago
- ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel drive…☆48Updated 2 years ago
- Allows for same-file KernelMode function execution using Encrypted addresses of Functions☆34Updated 6 months ago
- A library to assist with memory & code protection.☆56Updated last year
- Hijack NotifyRoutine for a kernelmode thread☆41Updated 2 years ago
- Improved VMP Idea(detect anti-anti-debug tools by bug)☆42Updated last year
- A simple tool to assemble shellcode ready to be copy-pasted into code☆69Updated 2 years ago
- UM-KM Communication using registry callbacks☆39Updated 4 years ago
- A simple present scene, kernel allocation injector.☆24Updated 2 years ago
- Bypass using kernel driver (not finish).☆20Updated last year
- ☆49Updated last year
- clearing traces of a loaded driver☆47Updated 2 years ago
- Patches DSE by swapping both data ptrs located in SeValidateImageHeader && SeValidateImageData☆19Updated last year
- This is a POC Test project for INTEL CPUs on blocking NMI Entries through the IDT Handler.☆44Updated 6 months ago
- Experiment with PAGE_GUARD protection to hide memory from other processes☆44Updated 10 months ago
- Hiding a system thread against conventional means of detection☆40Updated 4 years ago
- Driver shared section communication☆46Updated last month
- Virtual and physical memory hacking library using gigabyte vulnerable driver☆71Updated 2 years ago
- ☆68Updated 2 years ago
- C/C++ antidebugging library for Windows☆18Updated 3 months ago