This is the AV ("protection solution") used for my windows 10 rootkit main project. this includes the installer stager program, a service to perform automatic UM operations on boot and the protection driver used for SSDT, inline hooks detection, hidden processes by DKOM, vulnurable drivers validation and others.
☆13May 2, 2024Updated last year
Alternatives and similar repositories for ProtectionSolution
Users that are interested in ProtectionSolution are comparing it to the libraries listed below
Sorting:
- ☆10Dec 28, 2023Updated 2 years ago
- ☆11Oct 17, 2020Updated 5 years ago
- Windows file system driver which allows to block access to files at run-time (C/C++, C#, WDK, SDK)☆13Jan 1, 2023Updated 3 years ago
- it's a driver injector or driver loader header lib(Windows)☆12Aug 5, 2023Updated 2 years ago
- ☆14May 9, 2017Updated 8 years ago
- wfp2socks☆11Sep 11, 2025Updated 6 months ago
- ☆25Jan 6, 2025Updated last year
- ☆14Apr 7, 2018Updated 7 years ago
- x64 Windows privilege elevation using anycall☆22May 28, 2021Updated 4 years ago
- Disable NMI Callbacks with Kernelmode Driver☆18Mar 15, 2023Updated 3 years ago
- hkxiaoyu的windows c++应用层基础库☆12Sep 17, 2020Updated 5 years ago
- ☆12Oct 12, 2021Updated 4 years ago
- Some crazy PE executables protection kernel driver☆20May 2, 2020Updated 5 years ago
- ☆29Aug 3, 2024Updated last year
- ☆12Apr 12, 2024Updated last year
- Windows Simple Process Logger implemented as driver☆18Oct 27, 2017Updated 8 years ago
- In this project, our goal is to design a path planning algorithm that is able to a car around a simulated highway scenario, including tra…☆13Sep 12, 2018Updated 7 years ago
- Anti-rootkit works as a Windows system driver.☆13Mar 14, 2022Updated 4 years ago
- IDA plugin to make classes automatically☆20Oct 31, 2024Updated last year
- viewing page boundaries of pages with PAGE_NOACCESS protection reveals the presence of x64dbg.☆26Jan 1, 2017Updated 9 years ago
- <Hello!> -|DaS.Algo|- +Pr0bl3m5! `Comp::Ete` {Solve~Fun} ^Join_us^☆12Jan 31, 2025Updated last year
- `cross-tool` is a utility to generate `sysroot` tree for cross-compilation.☆15Jul 1, 2021Updated 4 years ago
- An intel x64/VT-x type 1 hypervisor☆13Feb 28, 2026Updated 2 weeks ago
- Protect a file from being deleted using windows kernel file system minifilter driver☆40Apr 2, 2021Updated 4 years ago
- Record & prevent file deletion in kernel mode☆46Jul 22, 2020Updated 5 years ago
- A Practical example of ELAM (Early Launch Anti-Malware)☆36Nov 12, 2021Updated 4 years ago
- ☆13Oct 28, 2025Updated 4 months ago
- iSwordSDK (Provide Powerful Kernel API For Ring3 Applications)☆15Mar 25, 2022Updated 3 years ago
- comparing data of module exports from disk and memory, then caching any differences.☆26Dec 11, 2021Updated 4 years ago
- Use RTCore64 to map your driver on windows 11.☆152May 9, 2025Updated 10 months ago
- 一个基于windows共享内存的进程间通信库☆21Oct 17, 2019Updated 6 years ago
- The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers☆34Mar 13, 2017Updated 9 years ago
- Bare Metal Brushless position control (using Field Oriented Control) on STM32F303☆14Jan 23, 2022Updated 4 years ago
- ESP32-S3 acts as USB host for VCP devices, Arduino Serial style☆20Feb 6, 2026Updated last month
- POC for CVE-2023-29360☆12Aug 31, 2024Updated last year
- A project on the Unicorn emulator to emulate the code of Pe files in windows☆28Sep 12, 2024Updated last year
- Source of injector for QHide gamesense☆10Apr 26, 2025Updated 10 months ago
- RunPE using Hell's Gate technique.☆32Dec 4, 2020Updated 5 years ago
- Open platform for sharing confirmed Malware samples☆39Nov 9, 2024Updated last year