rogerxiii / kernel-codecave-pocLinks
Proof of concept on how to bypass some limitations of a manual mapped driver
☆172Updated 5 years ago
Alternatives and similar repositories for kernel-codecave-poc
Users that are interested in kernel-codecave-poc are comparing it to the libraries listed below
Sorting:
- manually map driver for a signed driver memory space☆161Updated 4 years ago
- ☆147Updated 4 years ago
- Using CVE-2021-40449 to manual map kernel mode driver☆102Updated 3 years ago
- Kernel Lazy Importer☆124Updated last year
- base for testing☆177Updated last year
- 09/2021 reversal of EasyAntiCheat driver☆222Updated 3 years ago
- A mapper that maps shellcode into loaded large page drivers☆306Updated 3 years ago
- kernel anticheat to test your driver against☆178Updated 4 months ago
- An Injector that can inject dll into game process protected by anti cheat using SetWindowsHookEx.☆241Updated 6 years ago
- ☆188Updated 3 years ago
- BattlEye shellcodes tester☆148Updated 3 years ago
- ☆131Updated 3 years ago
- a more stable & secure read/write virtual memory for kernel mode drivers☆161Updated 5 years ago
- undetected eac mapper☆163Updated 3 years ago
- A kernelmode driver swapping a .data pointer in the kernel to perform communication between the kernel and usermode.☆143Updated 5 years ago
- Disks for DMA☆118Updated 4 years ago
- Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.☆147Updated 3 years ago
- Loads a signed kernel driver which allows you to map any driver to kernel mode without any traces of the signed / mapped driver.☆353Updated 4 years ago
- x64 Windows kernel driver mapper, inject unsigned driver using anycall☆177Updated last year
- Allows you to communicate with the kernel mode to manipulate memory in a stealthy way to avoid kernel anticheats.☆172Updated 3 years ago
- Drawing from kernelmode without any hooks☆172Updated 3 years ago
- ☆216Updated 3 years ago
- ☆155Updated last year
- Kernel driver for detecting Intel VT-x hypervisors.☆191Updated 2 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆117Updated 3 years ago
- ☆154Updated 5 years ago
- Archive R/W into any protected process by changing the value of KTHREAD->PreviousMode☆164Updated 3 years ago
- The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.☆327Updated 5 years ago
- Hooking kernel functions by abusing alignment☆246Updated 4 years ago
- Easy Anti PatchGuard☆221Updated 4 years ago