papstuc / portable_executableLinks
modern c++ wrapper around the microsoft portable executable file format
☆34Updated 2 months ago
Alternatives and similar repositories for portable_executable
Users that are interested in portable_executable are comparing it to the libraries listed below
Sorting:
- detect hypervisor with Nmi Callback☆42Updated 3 years ago
- ☆73Updated 3 years ago
- How to use PiDqSerializationWrite. Introduces how to safely read and write from mapped driver☆26Updated 2 years ago
- ☆34Updated 2 years ago
- driver that communicates using a shared section☆85Updated 10 months ago
- Kernel ReClassEx☆66Updated 2 years ago
- partially disable patchguard up to win11 21H2☆19Updated last year
- clearing traces of a loaded driver☆47Updated 3 years ago
- ☆46Updated last year
- Disable NMI Callbacks with Kernelmode Driver☆18Updated 2 years ago
- ☆37Updated last year
- comparing data of module exports from disk and memory, then caching any differences.☆26Updated 4 years ago
- Old way for blocking NMI interrupts☆29Updated 3 years ago
- page table manipulation to gain physical r/w☆43Updated last year
- ☆35Updated 2 years ago
- A Simple Example☆23Updated 7 years ago
- Allows for same-file KernelMode function execution using Encrypted addresses of Functions☆49Updated 4 months ago
- ☆17Updated 5 years ago
- A intel hypervisor, implementing many virtualization techniques☆52Updated 2 years ago
- A method to Disable DSE using .data ptr hooks☆38Updated 2 years ago
- Improved VMP Idea(detect anti-anti-debug tools by bug)☆47Updated 2 years ago
- anti cheat drv open source☆19Updated last year
- Disk based DMA for ATA and SCSI☆41Updated 2 years ago
- POC Hook of nt!HvcallCodeVa☆54Updated 2 years ago
- A debugger library using VEH.☆68Updated last year
- Emulate Drivers in RING3 with self context mapping or unicorn☆32Updated last year
- ☆48Updated 3 years ago
- A simple present scene, kernel allocation injector.☆26Updated 3 years ago
- ☆25Updated 2 years ago
- PoC kernel to usermode injection☆103Updated last year