pTerrance / alpc-km-um
POC usermode <=> kernel communication via ALPC.
☆53Updated 8 months ago
Alternatives and similar repositories for alpc-km-um:
Users that are interested in alpc-km-um are comparing it to the libraries listed below
- clearing traces of a loaded driver☆46Updated 2 years ago
- UM-KM Communication using registry callbacks☆39Updated 4 years ago
- ☆30Updated 2 years ago
- ☆71Updated 2 years ago
- Windows Kernel Misc☆23Updated last year
- 将驱动映射到会话空间☆33Updated 2 years ago
- Mapping your code on a 0x1000 size page☆70Updated 2 years ago
- page table manipulation to gain physical r/w☆40Updated 9 months ago
- ☆50Updated 2 years ago
- kinda custom data ptr swap communication method☆25Updated last year
- ☆26Updated last year
- POC Hook of nt!HvcallCodeVa☆49Updated last year
- ☆28Updated 4 months ago
- Old way for blocking NMI interrupts☆25Updated 2 years ago
- ☆24Updated last year
- ☆41Updated 3 years ago
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆82Updated last year
- ☆47Updated 2 years ago
- Old project (2020) reformed. Modifies gRT->GetVariable sub function from EFI_APPLICATION. Tested on Win10 22H2 (AMD).☆46Updated 11 months ago
- A method to Disable DSE using .data ptr hooks☆29Updated last year
- ☆48Updated last year
- ☆45Updated 4 years ago
- This project can bypass most of the AC except for some perverts that enable VT to monitor page tables☆40Updated 9 months ago
- ☆41Updated 2 years ago
- InfinityHookProMax: Make InfinityHook great great again☆42Updated last year
- ☆36Updated last year
- Discarded Section Manual Map☆67Updated 4 years ago
- detect hypervisor with Nmi Callback☆34Updated 2 years ago
- Only for Stress-Testing☆24Updated 2 years ago
- Hiding a system thread against conventional means of detection☆37Updated 4 years ago