POC usermode <=> kernel communication via ALPC.
☆75Jun 6, 2024Updated 2 years ago
Alternatives and similar repositories for alpc-km-um
Users that are interested in alpc-km-um are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A simple UM + KM example of how to bypass EAC CR3☆201Oct 13, 2025Updated 8 months ago
- ☆34Apr 11, 2023Updated 3 years ago
- Windows Kernel Misc☆25Sep 3, 2023Updated 2 years ago
- r/w virtual memory without attach☆230Oct 19, 2023Updated 2 years ago
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆104Jun 26, 2023Updated 3 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- 从MmPfnData中枚举进程和页目录基址☆215Aug 18, 2023Updated 2 years ago
- 对Windbg以Exdi模式下调试windows做一些修复☆21Aug 25, 2023Updated 2 years ago
- Patches DSE by swapping both data ptrs located in SeValidateImageHeader && SeValidateImageData☆26Feb 9, 2024Updated 2 years ago
- Proof of Concept Kernel-User Communication using System Thread.☆14Sep 24, 2023Updated 2 years ago
- Unknowncheats Magically Optimized Tidy Mapper using nvaudio☆159Jun 11, 2024Updated 2 years ago
- ☆63Jul 31, 2022Updated 3 years ago
- WinDbg-Samples ExdiGdbSrv fork 修复了一部分Vmware调试的问题☆34Jul 10, 2023Updated 2 years ago
- ☆188May 20, 2022Updated 4 years ago
- anti cheat drv open source☆19Apr 18, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- base for testing☆193Sep 28, 2024Updated last year
- ☆157May 21, 2024Updated 2 years ago
- Execute anything in a legit memory region by attacking a windows driver☆20Aug 20, 2023Updated 2 years ago
- IO隐藏通信封装☆17May 31, 2021Updated 5 years ago
- page table manipulation to gain physical r/w☆43Jun 12, 2026Updated 3 weeks ago
- Discarded Section Manual Map☆68Jun 18, 2020Updated 6 years ago
- ☆146Jan 24, 2024Updated 2 years ago
- ☆143Dec 10, 2022Updated 3 years ago
- Manual mapper that uses PTE manipulation, Virtual Address Descriptor (VAD) manipulation, and forceful memory allocation to hide executabl…☆413Jan 29, 2022Updated 4 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- ☆228Mar 11, 2023Updated 3 years ago
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆159Mar 16, 2026Updated 3 months ago
- A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe☆75Aug 16, 2023Updated 2 years ago
- Use ntdll/ntoskrnl to implement Kernel32, Advapi32 and other APIs. It includes user-mode and kernel-mode.☆97Jun 6, 2026Updated last month
- Stealthy UM <-> KM communication system without creating any system threads, permanent hooks, driver objects, section objects or device o…☆388Apr 30, 2026Updated 2 months ago
- ☆33Mar 3, 2024Updated 2 years ago
- POC Hook of nt!HvcallCodeVa☆54May 8, 2023Updated 3 years ago
- Virtual and physical memory hacking library using gigabyte vulnerable driver☆70Mar 16, 2026Updated 3 months ago
- Experiment to use sections as User/Kernelmode comm vector☆22Apr 7, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Windows kernel driver demonstrating kernel-to-usermode communication via shared memory sections☆109Apr 24, 2026Updated 2 months ago
- windows kernel pagehook☆42Oct 30, 2022Updated 3 years ago
- 一个界面基于IMGUI的ARK,目前R3实现☆13Nov 1, 2023Updated 2 years ago
- ☆100Oct 6, 2017Updated 8 years ago
- UM-KM Communication using registry callbacks☆39Jun 8, 2020Updated 6 years ago
- Rendering on external windows via hijacking thread contexts, with notes on ValidateHwnd☆14Jul 9, 2020Updated 5 years ago
- Not mine, just saved☆12Nov 12, 2023Updated 2 years ago