pTerrance / alpc-km-um
POC usermode <=> kernel communication via ALPC.
☆52Updated 5 months ago
Related projects ⓘ
Alternatives and complementary repositories for alpc-km-um
- ☆70Updated 2 years ago
- clearing traces of a loaded driver☆44Updated 2 years ago
- Mapping your code on a 0x1000 size page☆69Updated 2 years ago
- UM-KM Communication using registry callbacks☆39Updated 4 years ago
- 将驱动映射到会话空间☆33Updated 2 years ago
- Windows Kernel Misc☆22Updated last year
- ☆43Updated 3 years ago
- A method to Disable DSE using .data ptr hooks☆26Updated 9 months ago
- ☆50Updated 11 months ago
- ☆49Updated 2 years ago
- ☆28Updated last year
- Kernel Level NMI Callback Blocker☆32Updated 2 months ago
- Discarded Section Manual Map☆66Updated 4 years ago
- Hiding a system thread against conventional means of detection☆35Updated 4 years ago
- page table manipulation to gain physical r/w☆38Updated 6 months ago
- ☆32Updated 2 years ago
- Very easy to use pdb parsing library with only one header file,You can use it even if you are a fool.☆9Updated 8 months ago
- mouseclassservicecallback detection via hook☆48Updated 2 years ago
- kinda custom data ptr swap communication method☆23Updated last year
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆80Updated last year
- Handling C++ & __try exceptions without the need of built-in handlers.☆65Updated 3 years ago
- ☆41Updated 3 years ago
- Bypass using kernel driver (not finish).☆19Updated last year
- detect hypervisor with Nmi Callback☆34Updated 2 years ago