A quick-and-dirty anti-hook library proof of concept.
☆105Aug 29, 2018Updated 7 years ago
Alternatives and similar repositories for ReloadLibrary
Users that are interested in ReloadLibrary are comparing it to the libraries listed below
Sorting:
- Confirms the capability of Hardware-Accelerated Virtualization Technology.☆10Oct 26, 2025Updated 4 months ago
- ☆29Jan 15, 2021Updated 5 years ago
- ☆34Jul 28, 2018Updated 7 years ago
- For Example. See Miro's Blog☆30Nov 26, 2022Updated 3 years ago
- The Network project is a C++ encapsulation of WinSock2 to form a lightweight network library; The Graphics project is a C++ encapsulation…☆13Oct 31, 2017Updated 8 years ago
- Modifies the code of the RtlUserThreadStart callback and reads the arguments passed to it. Then it changes the initial execution argument…☆15Mar 4, 2018Updated 7 years ago
- win10 pgContext dynamic dump (btc version)☆110Jan 15, 2020Updated 6 years ago
- Shareds for kernel developement☆29Dec 23, 2013Updated 12 years ago
- ☆163Oct 29, 2020Updated 5 years ago
- SV-Assistant☆21Jan 31, 2024Updated 2 years ago
- 常用代码类☆13May 31, 2014Updated 11 years ago
- A simple ransomware defender.It uses minifilter to filt "rewrite" and "delete" events in kernel.And it handles event in user mode.☆27Aug 14, 2018Updated 7 years ago
- kernel-mode TDI client which can send and receive HTTP requests☆56Jun 9, 2018Updated 7 years ago
- A driver that hooks C: volume using symbolic link callback to track all FS access to the volume☆110Apr 24, 2020Updated 5 years ago
- Process Doppelgänging☆162Dec 19, 2017Updated 8 years ago
- RVDbg is a debugger/exception handler for Windows processes and has the capability to circumvent anti-debugging techniques. (Cleaner, doc…☆72Sep 5, 2020Updated 5 years ago
- Communication via callback☆73Oct 9, 2019Updated 6 years ago
- AllMemPro☆46Jan 15, 2018Updated 8 years ago
- Analysing and defeating PatchGuard universally☆36Nov 4, 2020Updated 5 years ago
- 快速内存搜索算法,商用级别☆136Nov 2, 2018Updated 7 years ago
- ☆99Oct 6, 2017Updated 8 years ago
- A kernel mode Windows rootkit in development.☆49Dec 31, 2021Updated 4 years ago
- A PoC designed to bypass all usermode hooks in a WoW64 environment.☆150Sep 16, 2020Updated 5 years ago
- ☆39Oct 29, 2020Updated 5 years ago
- usermode standalone kernel interface☆111Jul 9, 2018Updated 7 years ago
- Currently supports injecting signed/unsigned DLLs in 64-bit processes☆60Sep 14, 2020Updated 5 years ago
- copy of tdifw lib☆10Jun 15, 2017Updated 8 years ago
- Window Executable file Function tracer using Debugging API☆44Sep 26, 2019Updated 6 years ago
- ☆18Oct 12, 2014Updated 11 years ago
- Some crazy PE executables protection kernel driver☆20May 2, 2020Updated 5 years ago
- a more stable & secure read/write virtual memory for kernel mode drivers☆161Mar 8, 2020Updated 5 years ago
- Kernel DLL Injector using NX Bit Swapping and VAD hide for hiding injected DLL☆219Nov 12, 2020Updated 5 years ago
- CallMon is an experimental system call monitoring tool that works on Windows 10 versions 2004+ using PsAltSystemCallHandlers☆145Sep 5, 2020Updated 5 years ago
- C++ 17 compile time string encryption supporting vs2010-2019☆76Jun 25, 2020Updated 5 years ago
- This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemo…☆632Mar 19, 2019Updated 6 years ago
- Windows Manipulation Library (x64, User/Kernelmode)☆77Oct 4, 2018Updated 7 years ago
- P2C Loader based on blackbone, used by isolation.top and others.☆13Jan 2, 2018Updated 8 years ago
- Hide codes/data in the kernel address space.☆188May 8, 2021Updated 4 years ago
- Simple driver to register all available process, thread, image, Registry, and Object callbacks☆124Oct 5, 2017Updated 8 years ago