pvthuyet / windows-kernel-programming
Windows kernel
☆12Updated 4 years ago
Alternatives and similar repositories for windows-kernel-programming:
Users that are interested in windows-kernel-programming are comparing it to the libraries listed below
- ☆10Updated 2 months ago
- ☆25Updated last month
- Code injection via ZwCreateSection, ZwUnmapViewOfSection. C++ example☆17Updated 3 years ago
- Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich☆15Updated 9 months ago
- Research of modifying exported function names at runtime (C/C++, Windows)☆17Updated 10 months ago
- Offensive Assembly code snippets.☆12Updated last year
- ☆12Updated last year
- ☆23Updated last year
- example using NtCreateUserProcess in rust☆18Updated 2 months ago
- An x64 binary executing code that's not inside of it.☆16Updated 2 years ago
- Manually perform syscalls without going through any external API or DLL.☆18Updated last year
- Repository of Microsoft Driver Block Lists based off of OS-builds☆39Updated 11 months ago
- really ?☆12Updated last year
- Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…☆20Updated last month
- An example of COM hijacking using a proxy DLL.☆28Updated 3 years ago
- Released presentations of my talks + code that used during these talks☆13Updated 6 months ago
- An example of Windows self-replicating malware.☆10Updated 2 years ago
- Windows kernel driver encryption library, support base64, aes-256, rsa-2048 and higher, ecc-256, single file, minimal dependence, support…☆21Updated 3 years ago
- A simple BOF that disables some logging with NtSetInformationProcess☆10Updated last year
- run process as PPL Antimalware☆10Updated last year
- ☆29Updated last year
- the Open Source and Pure C++ Packer for eXecutables☆18Updated 2 years ago
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 2 years ago
- Process Injection: APC Injection☆29Updated 4 years ago
- A simple PE loader.☆25Updated 2 years ago
- Self Delete DLL☆23Updated last year
- Small tool to play with IOCs caused by Imageload events☆42Updated last year
- Implementation of ITaskHandler in C++☆13Updated 2 years ago
- Remote PE reflective injection with a simple reflective loader☆31Updated 5 years ago
- A PoC tool for exploiting leaked process and thread handles☆30Updated last year