notscimmy / libelevateLinks
Handle elevation DKOM against ObRegisterCallbacks
☆314Updated 6 years ago
Alternatives and similar repositories for libelevate
Users that are interested in libelevate are comparing it to the libraries listed below
Sorting:
- The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.☆316Updated 5 years ago
- A library to manipulate physical memory from usermode.☆297Updated last year
- This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemo…☆611Updated 6 years ago
- Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module☆421Updated 6 years ago
- driver manual mapper (outdated/for educational purposes)☆108Updated 6 years ago
- C++ graphics kernel subsystem hook☆532Updated 4 years ago
- C++17 PE manualmapper☆374Updated 3 years ago
- Windows kernel samples☆255Updated 6 years ago
- Simple code to manipulate the memory of a usermode process from kernel.☆276Updated 8 years ago
- driver mapper / capcom wrapper☆221Updated 5 years ago
- Windows inline hooking tool.☆282Updated 6 years ago
- Rendering on external windows via hijacking thread contexts☆398Updated 5 years ago
- Module extending manual mapper☆347Updated 5 years ago
- An Injector that can inject dll into game process protected by anti cheat using SetWindowsHookEx.☆243Updated 6 years ago
- Driver that uses network sockets to communicate with client and read/ write protected process memory.☆566Updated 6 years ago
- Hooking kernel functions by abusing alignment☆245Updated 4 years ago
- System call hook for Windows 10 20H1☆495Updated 4 years ago
- Reversing EasyAntiCheat.☆558Updated 6 years ago
- Emulate Drivers in RING3 with self context mapping or unicorn☆349Updated 3 years ago
- A x64 Windows Rootkit using SSDT or Hypervisor hook☆554Updated 7 months ago
- Kernel mode driver for reading/writing process memory. C/Win32.☆301Updated 7 years ago
- Kernel Inject DLL☆346Updated 2 years ago
- EasyAntiCheat Integrity check bypass by mimicking memory changes☆349Updated 4 years ago
- This DKOM exploit enables any app in usermode to access physical memory directly☆226Updated 7 years ago
- 09/2021 reversal of EasyAntiCheat driver☆220Updated 3 years ago
- Manual mapping without creating any threads, with rw only access☆765Updated 5 years ago
- Manual mapper that uses PTE manipulation, Virtual Address Descriptor (VAD) manipulation, and forceful memory allocation to hide executabl…☆352Updated 3 years ago
- UEFI bootkit for driver manual mapping☆567Updated last year
- EAC Bypass☆312Updated 5 years ago
- DLL scatter manual mapper☆795Updated 4 years ago