rogerxiii / kernel-codecave-pocLinks
Proof of concept on how to bypass some limitations of a manual mapped driver
☆171Updated 4 years ago
Alternatives and similar repositories for kernel-codecave-poc
Users that are interested in kernel-codecave-poc are comparing it to the libraries listed below
Sorting:
- manually map driver for a signed driver memory space☆160Updated 4 years ago
- a more stable & secure read/write virtual memory for kernel mode drivers☆164Updated 5 years ago
- ☆146Updated 4 years ago
- kernel anticheat to test your driver against☆163Updated last week
- Kernel Lazy Importer☆121Updated last year
- 09/2021 reversal of EasyAntiCheat driver☆219Updated 3 years ago
- Using CVE-2021-40449 to manual map kernel mode driver☆101Updated 3 years ago
- BattlEye shellcodes tester☆148Updated 3 years ago
- undetected eac mapper☆166Updated 3 years ago
- Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.☆145Updated 3 years ago
- base for testing☆169Updated 8 months ago
- Hooking kernel functions by abusing alignment☆243Updated 4 years ago
- A mapper that maps shellcode into loaded large page drivers☆283Updated 3 years ago
- ☆153Updated 5 years ago
- ☆181Updated 3 years ago
- A kernelmode driver swapping a .data pointer in the kernel to perform communication between the kernel and usermode.☆143Updated 4 years ago
- The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.☆303Updated 5 years ago
- ☆122Updated 2 years ago
- An Injector that can inject dll into game process protected by anti cheat using SetWindowsHookEx.☆244Updated 6 years ago
- Cool kernel communication method.☆101Updated 3 years ago
- Drawing from kernelmode without any hooks☆164Updated 2 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆113Updated 3 years ago
- ☆73Updated 5 years ago
- Loads a signed kernel driver which allows you to map any driver to kernel mode without any traces of the signed / mapped driver.☆343Updated 3 years ago
- This is a simple project of a driver + usermode.☆153Updated 3 years ago
- ☆217Updated 3 years ago
- Manual mapper that uses PTE manipulation, Virtual Address Descriptor (VAD) manipulation, and forceful memory allocation to hide executabl…☆332Updated 3 years ago
- Archive R/W into any protected process by changing the value of KTHREAD->PreviousMode☆155Updated 2 years ago
- ☆143Updated 4 years ago
- An x64 page table iterator written in C++ as a kernel mode windows driver.☆112Updated 4 years ago