roman-allen / FSFilterDriverLinks
Windows file system driver which allows to block access to files at run-time (C/C++, C#, WDK, SDK)
☆10Updated 2 years ago
Alternatives and similar repositories for FSFilterDriver
Users that are interested in FSFilterDriver are comparing it to the libraries listed below
Sorting:
- hooking KiUserApcDispatcher☆24Updated 8 years ago
- PE Infector/Cryptor source code☆15Updated 8 years ago
- ☆19Updated 9 years ago
- ☆28Updated 4 years ago
- ☆12Updated 7 years ago
- Try to transport the tcpip stack of ReactOS to Windows XP.☆17Updated 11 years ago
- Native file compressor using only the ntdll.dll☆9Updated 7 years ago
- A driver that supports communication between a Windows guest and HyperWin☆15Updated 4 years ago
- Legal access: The driver and console app to demonstrate the basic memory access in kernel mode☆9Updated 7 years ago
- HTTP/HTTPS/DNS inspector (windows driver)☆26Updated 6 years ago
- A simple ransomware defender.It uses minifilter to filt "rewrite" and "delete" events in kernel.And it handles event in user mode.☆27Updated 6 years ago
- random hack code (inject DLL, function, vtable hooking, etc)☆8Updated 3 years ago
- Dump PDB Symbols including support for Bochs Debugging Format (with wine support)☆15Updated last year
- Basic Injector running on x64 machines that is able to load into x64 AND x86 processes☆21Updated 6 years ago
- Windows device tree walker☆15Updated 6 years ago
- Basic utilities for executing, reading and writing 64-bit data in a 32-bit WoW64 process☆17Updated 2 years ago
- automates exploits using ROP chains, using ntdll-scraper☆16Updated 3 years ago
- A working version of this tutorial: https://docs.microsoft.com/en-us/windows/desktop/rpc/tutorial☆16Updated 5 years ago
- An aggregate of tools used in the core of vmp_dbg plus other parsing utils to parse vmp bc.☆15Updated 8 years ago
- Some crazy PE executables protection kernel driver☆18Updated 5 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆33Updated 5 years ago
- WoW64 -> x64☆19Updated 8 years ago
- Phantom.Code extension providing Just-In-Time asm x64 compilation based on LLVM☆8Updated 2 years ago
- ☆14Updated 12 years ago
- A windows kernel driver to Block symbolic link exploit used for privilege escalation.☆11Updated 4 years ago
- ☆12Updated 7 years ago
- ☆19Updated 5 years ago
- 基于WinDivert实现的一个包过滤与截断程序☆13Updated 6 years ago
- Code Integrity Violation Spotter☆16Updated 11 months ago
- MouHidInputHook enables users to filter, modify, and inject mouse input data packets into the input data stream of HID USB mouse devices …☆10Updated 5 years ago