pTerrance / alpc-km-umLinks
POC usermode <=> kernel communication via ALPC.
☆64Updated last year
Alternatives and similar repositories for alpc-km-um
Users that are interested in alpc-km-um are comparing it to the libraries listed below
Sorting:
- ☆62Updated 3 years ago
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆97Updated 2 years ago
- ☆72Updated 3 years ago
- Mapping your code on a 0x1000 size page☆72Updated 3 years ago
- 将驱动映射到会话空间☆36Updated 3 years ago
- UM-KM Communication using registry callbacks☆40Updated 5 years ago
- ☆35Updated 3 years ago
- Windows Kernel Misc☆23Updated 2 years ago
- ☆27Updated 2 years ago
- clearing traces of a loaded driver☆47Updated 3 years ago
- page table manipulation to gain physical r/w☆43Updated last year
- ☆48Updated 3 years ago
- Windows X64 mode use seh in manual mapped dll or manual mapped sys☆76Updated 3 years ago
- ☆48Updated 3 years ago
- Old project (2020) reformed. Modifies gRT->GetVariable sub function from EFI_APPLICATION. Tested on Win10 22H2 (AMD).☆53Updated last year
- Old way for blocking NMI interrupts☆28Updated 3 years ago
- detect hypervisor with Nmi Callback☆40Updated 3 years ago
- ☆51Updated last year
- just proof of concept. hooking MmCopyMemory PG safe.☆78Updated 2 years ago
- Discarded Section Manual Map☆67Updated 5 years ago
- ☆68Updated 4 years ago
- A library to assist with memory & code protection.☆64Updated last year
- A simple MmCopyMemory hook.☆37Updated 3 years ago
- InfinityHookProMax: Make InfinityHook great great again☆48Updated 2 years ago
- ☆25Updated 2 years ago
- Secure Hyper-Visor Injector for Easy Anti Cheat, Battleye | that supports amd + intel | Undetected + Active updates☆23Updated 2 years ago
- ☆49Updated 4 years ago
- Hiding a system thread against conventional means of detection☆40Updated 5 years ago
- ☆22Updated 3 years ago
- Expanding Kernel Lazy Importer☆32Updated 2 years ago