opcode86 / SysCaller
Single header library to simplify the usage of direct syscalls. x64/x86
☆12Updated last year
Related projects: ⓘ
- Hijack NotifyRoutine for a kernelmode thread☆40Updated 2 years ago
- ☆15Updated this week
- ☆11Updated 3 years ago
- ☆23Updated last year
- UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.☆44Updated last year
- ☆18Updated last year
- ☆19Updated this week
- Disable threat tracing from the kernel..☆12Updated 2 years ago
- RWX Section Abusing☆16Updated 10 months ago
- Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.☆27Updated 2 years ago
- A project on the Unicorn emulator to emulate the code of Pe files in windows☆15Updated last week
- ☆36Updated last year
- ☆28Updated this week
- Stealing signatures from pe files☆15Updated 2 years ago
- A poc that abuses Enclave☆36Updated 2 years ago
- neat way to detect memory read using nt layer function.☆14Updated last year
- search for a driver/dll module that has a wanted section bigger than the size of your image☆21Updated 3 years ago
- ☆16Updated last month
- A simple way to spoof return addresses using an exception handler☆31Updated 2 years ago
- Injector with kernel power☆15Updated 3 years ago
- comparing data of module exports from disk and memory, then caching any differences.☆23Updated 2 years ago
- An example code of CiGetCertPublisherName☆14Updated 2 years ago
- ☆19Updated 2 years ago
- Achieving code execution through abusing VEH☆15Updated last year
- This driver hooks a device object for ioctl and uses mdls to allocate physical pages and manually injects an entry into a process's page …☆11Updated last year
- Illustrates the concept of return address spoofing, and how it is used.☆14Updated 4 years ago
- detect hypervisor with Nmi Callback☆32Updated last year
- Header only UM AC "bypass"☆16Updated 4 months ago
- direct systemcalls with a modern c++20 interface.☆41Updated last year
- ☆12Updated 2 years ago