Reverse engineered source code of the autochk rootkit
☆211Nov 1, 2019Updated 6 years ago
Alternatives and similar repositories for autochk-rootkit
Users that are interested in autochk-rootkit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 简单安排一下 autochk.sys 这个rootkit☆73Mar 7, 2023Updated 3 years ago
- Research on Windows Kernel Executive Callback Objects☆317Feb 22, 2020Updated 6 years ago
- Hide codes/data in the kernel address space.☆187May 8, 2021Updated 5 years ago
- A kernel mode Windows rootkit in development.☆48Dec 31, 2021Updated 4 years ago
- A driver that hooks C: volume using symbolic link callback to track all FS access to the volume☆108Apr 24, 2020Updated 6 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆242Nov 6, 2019Updated 6 years ago
- win10 pgContext dynamic dump (btc version)☆112Jan 15, 2020Updated 6 years ago
- HTTP/HTTPS/DNS inspector (windows driver)☆24Feb 20, 2019Updated 7 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆64Jun 19, 2019Updated 6 years ago
- ☆39Oct 29, 2020Updated 5 years ago
- APC Internals Research Code☆173Jun 28, 2020Updated 5 years ago
- a frame of amd-v svm nest☆53Apr 7, 2020Updated 6 years ago
- exploit termdd.sys(support kb4499175)☆61Jul 15, 2019Updated 6 years ago
- For Example. See Miro's Blog☆30Nov 26, 2022Updated 3 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Toolkit for Hyper-V security research☆156Mar 7, 2022Updated 4 years ago
- ☆115Oct 1, 2019Updated 6 years ago
- Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.☆906Nov 21, 2019Updated 6 years ago
- PoC: Exploit 32-bit Thread Snapshot of WOW64 to Take Over $RIP & Inject & Bypass Antivirus HIPS (HITB 2021)☆166May 27, 2021Updated 4 years ago
- System call hook for Windows 10 20H1☆494Jun 26, 2021Updated 4 years ago
- Detects if a Kernel mode debugger is active by reading the value of KUSER_SHARED_DATA.KdDebuggerEnabled. It is a high level and portable …☆25Sep 18, 2017Updated 8 years ago
- VT-based PCI device monitor (SPI)☆157Oct 29, 2020Updated 5 years ago
- windows rpc 使用MIDL+RPC实现HelloWorld☆24Mar 21, 2018Updated 8 years ago
- All Nt Syscall and W32k Syscall in one asm, include, and call it!☆58Nov 4, 2021Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- 滥用cow机制进行全局注入☆99Jan 1, 2021Updated 5 years ago
- A more stealthy variant of "DLL hollowing"☆366Mar 8, 2024Updated 2 years ago
- Protects deletion of files with a specified extension using a kernel-mode driver.☆76Jul 16, 2018Updated 7 years ago
- The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.☆348Apr 27, 2020Updated 6 years ago
- Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.☆24Jan 23, 2018Updated 8 years ago
- Kernel DLL Injector using NX Bit Swapping and VAD hide for hiding injected DLL☆221Nov 12, 2020Updated 5 years ago
- Kernel Pool Monitor☆128Mar 6, 2022Updated 4 years ago
- Process reimaging proof of concept code☆96Jun 21, 2019Updated 6 years ago
- NINA: No Injection, No Allocation x64 Process Injection Technique☆226Jun 9, 2020Updated 5 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Windows CVE主防(HIPS/HIDS)☆57May 2, 2026Updated 3 weeks ago
- Intercepting DeviceControl via WPP☆137Nov 18, 2019Updated 6 years ago
- x64 free protect Features 1.process/thread handle protect 2.anti taskmgr.exe 3.hide process 4.anti-debugger(user/kernel debugger)☆87Apr 3, 2019Updated 7 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆66Apr 4, 2020Updated 6 years ago
- Support Windows OS Reversing by searching easily for references to functions across many DLLs☆38Jan 12, 2022Updated 4 years ago
- A Windows kernel-mode rootkit that abuses legitimate communication channels to control a machine.☆724Aug 5, 2020Updated 5 years ago
- KSOCKET provides a very basic example how to make a network connections in the Windows Driver by using WSK☆546Sep 2, 2022Updated 3 years ago