nickcano / ReloadLibrary
A quick-and-dirty anti-hook library proof of concept.
☆103Updated 6 years ago
Alternatives and similar repositories for ReloadLibrary:
Users that are interested in ReloadLibrary are comparing it to the libraries listed below
- Dump system call codes, names, and offsets from Ntdll.dll☆76Updated last year
- Resolve DOS MZ executable symbols at runtime☆96Updated 3 years ago
- ☆153Updated 5 years ago
- x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code☆203Updated 3 years ago
- Elevate a process to be a protected process☆144Updated 5 years ago
- based on https://github.com/secrary/Hooking-via-InstrumentationCallback☆69Updated 5 years ago
- A tool for detecting manual/direct syscalls in x86 and x64 processes using Nirvana Hooks.☆109Updated 3 years ago
- codes for my blog post: https://secrary.com/Random/InstrumentationCallback/☆172Updated 7 years ago
- x64 syscall caller in C++.☆87Updated 6 years ago
- Obfuscate calls to imports by patching in stubs☆67Updated 3 years ago
- Exploit MsIo vulnerable driver☆94Updated 3 years ago
- Intercepting DeviceControl via WPP☆131Updated 5 years ago
- ☆68Updated 4 years ago
- Kernel LdrLoadDll injector☆258Updated 6 years ago
- Weaponizing Gigabyte driver for priv escalation and bypass PPL☆68Updated 5 years ago
- Disable Driver Callbacks☆102Updated 7 years ago
- Capcom wrapper with safety in mind.☆79Updated 6 years ago
- A simple tool to assemble shellcode ready to be copy-pasted into code☆68Updated 2 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆112Updated 3 years ago
- Custom GetProcAddress, GetModuleHandleA and some dbghelp.dll functions☆80Updated 6 years ago
- Discarded Section Manual Map☆66Updated 4 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆209Updated 5 years ago
- APC Internals Research Code☆162Updated 4 years ago
- Recreation of GetProcAddress without external dependencies on Windows Libraries☆89Updated 9 years ago
- This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness☆51Updated 5 years ago
- LSASS INJECTOR☆35Updated 6 years ago
- Windows Kernel Driver dlls injector using APC☆61Updated 6 years ago
- CVE-2022-3699 with arbitrary kernel code execution capability☆69Updated 2 years ago
- reverse engineering of bedaisy.sys (battleyes kernel driver) - Aki2k/BEDaisy☆82Updated 4 years ago
- Manual DLL Injector using Thread Hijacking.☆236Updated 7 years ago