pTerrance / alpc-km-um
POC usermode <=> kernel communication via ALPC.
☆53Updated 11 months ago
Alternatives and similar repositories for alpc-km-um:
Users that are interested in alpc-km-um are comparing it to the libraries listed below
- ☆53Updated 2 years ago
- clearing traces of a loaded driver☆47Updated 2 years ago
- ☆30Updated 2 years ago
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆86Updated last year
- ☆69Updated 2 years ago
- Windows Kernel Misc☆23Updated last year
- A method to Disable DSE using .data ptr hooks☆30Updated last year
- Mapping your code on a 0x1000 size page☆72Updated 2 years ago
- ☆48Updated 3 years ago
- page table manipulation to gain physical r/w☆41Updated last year
- ☆23Updated 6 months ago
- ☆46Updated 3 years ago
- Old project (2020) reformed. Modifies gRT->GetVariable sub function from EFI_APPLICATION. Tested on Win10 22H2 (AMD).☆50Updated last year
- 将驱动映射到会话空间☆34Updated 2 years ago
- UM-KM Communication using registry callbacks☆39Updated 4 years ago
- ☆50Updated last year
- Discarded Section Manual Map☆67Updated 4 years ago
- ☆78Updated last year
- ☆42Updated 3 years ago
- Virtual and physical memory hacking library using gigabyte vulnerable driver☆71Updated 2 years ago
- Hiding a system thread against conventional means of detection☆40Updated 4 years ago
- ☆47Updated 4 years ago
- ☆26Updated last year
- A simple MmCopyMemory hook.☆37Updated 2 years ago
- just proof of concept. hooking MmCopyMemory PG safe.☆69Updated last year
- ☆64Updated 2 years ago
- ☆43Updated 10 months ago
- Windows X64 mode use seh in manual mapped dll or manual mapped sys☆71Updated 2 years ago
- A library to assist with memory & code protection.☆56Updated last year
- ntoskrnl .data hooks for UM-KM communication☆41Updated 11 months ago