Reverse engineered source code of the autochk rootkit
☆212Nov 1, 2019Updated 6 years ago
Alternatives and similar repositories for autochk-rootkit
Users that are interested in autochk-rootkit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 简单安排一下 autochk.sys 这个rootkit☆73Mar 7, 2023Updated 3 years ago
- Research on Windows Kernel Executive Callback Objects☆317Feb 22, 2020Updated 6 years ago
- Hide codes/data in the kernel address space.☆187May 8, 2021Updated 5 years ago
- A kernel mode Windows rootkit in development.☆47Dec 31, 2021Updated 4 years ago
- A driver that hooks C: volume using symbolic link callback to track all FS access to the volume☆108Apr 24, 2020Updated 6 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆243Nov 6, 2019Updated 6 years ago
- win10 pgContext dynamic dump (btc version)☆115Jan 15, 2020Updated 6 years ago
- HTTP/HTTPS/DNS inspector (windows driver)☆24Feb 20, 2019Updated 7 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆64Jun 19, 2019Updated 6 years ago
- ☆39Oct 29, 2020Updated 5 years ago
- APC Internals Research Code☆175Jun 28, 2020Updated 5 years ago
- a frame of amd-v svm nest☆54Apr 7, 2020Updated 6 years ago
- exploit termdd.sys(support kb4499175)☆61Jul 15, 2019Updated 6 years ago
- For Example. See Miro's Blog☆30Nov 26, 2022Updated 3 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Toolkit for Hyper-V security research☆156Mar 7, 2022Updated 4 years ago
- ☆115Oct 1, 2019Updated 6 years ago
- Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.☆909Nov 21, 2019Updated 6 years ago
- PoC: Exploit 32-bit Thread Snapshot of WOW64 to Take Over $RIP & Inject & Bypass Antivirus HIPS (HITB 2021)☆164May 27, 2021Updated 5 years ago
- System call hook for Windows 10 20H1☆495Jun 26, 2021Updated 4 years ago
- Detects if a Kernel mode debugger is active by reading the value of KUSER_SHARED_DATA.KdDebuggerEnabled. It is a high level and portable …☆25Sep 18, 2017Updated 8 years ago
- VT-based PCI device monitor (SPI)☆158Oct 29, 2020Updated 5 years ago
- windows rpc 使用MIDL+RPC实现HelloWorld☆24Mar 21, 2018Updated 8 years ago
- All Nt Syscall and W32k Syscall in one asm, include, and call it!☆58Nov 4, 2021Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- 滥用cow机制进行全局注入☆99Jan 1, 2021Updated 5 years ago
- A more stealthy variant of "DLL hollowing"☆366Mar 8, 2024Updated 2 years ago
- Protects deletion of files with a specified extension using a kernel-mode driver.☆76Jul 16, 2018Updated 7 years ago
- The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.☆351Apr 27, 2020Updated 6 years ago
- Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.☆24Jan 23, 2018Updated 8 years ago
- Kernel DLL Injector using NX Bit Swapping and VAD hide for hiding injected DLL☆221Nov 12, 2020Updated 5 years ago
- Kernel Pool Monitor☆128Mar 6, 2022Updated 4 years ago
- Process reimaging proof of concept code☆96Jun 21, 2019Updated 6 years ago
- NINA: No Injection, No Allocation x64 Process Injection Technique☆225Jun 9, 2020Updated 6 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Intercepting DeviceControl via WPP☆137Nov 18, 2019Updated 6 years ago
- Windows CVE主防(HIPS/HIDS)☆57May 2, 2026Updated last month
- x64 free protect Features 1.process/thread handle protect 2.anti taskmgr.exe 3.hide process 4.anti-debugger(user/kernel debugger)☆87Apr 3, 2019Updated 7 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆67Apr 4, 2020Updated 6 years ago
- Support Windows OS Reversing by searching easily for references to functions across many DLLs☆38Jan 12, 2022Updated 4 years ago
- A Windows kernel-mode rootkit that abuses legitimate communication channels to control a machine.☆723Aug 5, 2020Updated 5 years ago
- KSOCKET provides a very basic example how to make a network connections in the Windows Driver by using WSK☆545Sep 2, 2022Updated 3 years ago