rogerxiii / kernel-codecave-poc

Related projects: ⓘ

• thesecretclub / callout-poc
  ☆135Updated 3 years ago
• lennyRBLX / readwrite-kernel-stable
  a more stable & secure read/write virtual memory for kernel mode drivers
  ☆161Updated 4 years ago
• ekknod / sumap
  manually map driver for a signed driver memory space
  ☆136Updated 3 years ago
• not-wlan / driver-hijack
  ☆150Updated 4 years ago
• es3n1n / be-shellcode-tester
  BattlEye shellcodes tester
  ☆133Updated 2 years ago
• ch4ncellor / EAC-Reversal
  09/2021 reversal of EasyAntiCheat driver
  ☆194Updated 2 years ago
• Vasie1337 / Kernel-Anticheat
  Check your detection vectors
  ☆132Updated last year
• hypervisor / kli
  Kernel Lazy Importer
  ☆107Updated 5 months ago
• armvirus / CosMapper
  Loads a signed kernel driver which allows you to map any driver to kernel mode without any traces of the signed / mapped driver.
  ☆260Updated 3 years ago
• sariaki / amd-hypervisor
  a minimalistic windows hypervisor for amd processors
  ☆96Updated 2 years ago
• SamuelTulach / memhv
  Minimalistic AMD-V/SVM hypervisor with memory introspection capabilities
  ☆168Updated 3 months ago
• VollRagm / lpmapper
  A mapper that maps shellcode into loaded large page drivers
  ☆215Updated 2 years ago
• Compiled-Code / eac-mapper
  undetected eac mapper
  ☆161Updated 2 years ago
• vmcall / owned_alignment
  Hooking kernel functions by abusing alignment
  ☆238Updated 3 years ago
• ekknod / acdrv
  base for testing
  ☆146Updated this week
• Deputation / hygieia
  Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.
  ☆133Updated 2 years ago
• Deputation / instrumentation_callbacks
  A proof of concept demonstrating instrumentation callbacks on Windows 10 21h1 with a TLS variable to ensure all syscalls are caught.
  ☆111Updated 2 years ago
• Sentient111 / KernelDrawing
  Drawing from kernelmode without any hooks
  ☆154Updated 2 years ago
• Sinclairq / DataCommunication
  A kernelmode driver swapping a .data pointer in the kernel to perform communication between the kernel and usermode.
  ☆137Updated 3 years ago
• BadPlayer555 / KernelGDIDraw
  The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.
  ☆241Updated 4 years ago
• MellowNight / AetherVisor
  Memory hacking library powered by AMD SVM
  ☆290Updated last year
• SDXT / MMInject
  Kernel DLL Injector using NX Bit Swapping and VAD hide for hiding injected DLL
  ☆188Updated 3 years ago
• weak1337 / NO_ACCESS_Protection
  ☆173Updated 2 years ago
• Ahora57 / Roblox-Free-Exploit-Script-Executor-2023-April
  ☆93Updated this week
• weak1337 / SkipHook
  ☆115Updated 2 years ago
• SamuelTulach / voidmap
  Using CVE-2021-40449 to manual map kernel mode driver
  ☆96Updated 2 years ago
• M-r-J-o-h-n / SWH-Injector
  An Injector that can inject dll into game process protected by anti cheat using SetWindowsHookEx.
  ☆225Updated 5 years ago
• KDIo3 / PCIBan
  A PoC for requesting HWIDs directly from hardware, skipping any potential hooks or OS support.
  ☆77Updated 3 years ago
• not-matthias / Nemesis
  A customizable process dumper.
  ☆130Updated 5 years ago
• unmaewei / Full-Kernel-Driver
  ☆138Updated 3 years ago