ssnob / hidden_syscall_monitoringLinks
monitors hidden syscalls called from call of duty anticheat
☆80Updated 5 months ago
Alternatives and similar repositories for hidden_syscall_monitoring
Users that are interested in hidden_syscall_monitoring are comparing it to the libraries listed below
Sorting:
- C++ macro for x64 programs that breaks ida hex-rays decompiler tool.☆118Updated last year
- Generate a PDB file given the old PDB file and an address mapping☆48Updated 3 months ago
- Proof-of-concept game using VBS enclaves to protect itself from cheating☆40Updated 7 months ago
- Simple, fast and lightweight Header-Only C++ Assembler Library☆62Updated 2 weeks ago
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆55Updated 8 months ago
- Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…☆122Updated 2 years ago
- Finding Truth in the Shadows☆107Updated 2 years ago
- Kernel ReClassEx☆62Updated last year
- A Windows executable (PE) packer (x64) with LZMA compression and with full TLS (Thread Local Storage) support☆57Updated last week
- A simple direct syscall wrapper written in C++ with compatibility for x86 and x64 programs.☆53Updated 4 months ago
- Header-only C++ library for producing PE files.☆33Updated 2 years ago
- A universal binary patching dll.☆90Updated 8 months ago
- ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel drive…☆47Updated 2 years ago
- An improved version of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆70Updated 2 months ago
- An x86-64 code virtualizer for VM based obfuscation☆123Updated 6 months ago
- DSE & PG bypass via BYOVD attack☆51Updated last year
- A set of LLVM and GCC based plugins that perform code obfuscation.☆125Updated last week
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆78Updated this week
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆206Updated 8 months ago
- kernel-mode DLL Injector☆85Updated 2 months ago
- Report and exploit of CVE-2024-21305.☆36Updated last year
- spoof return address☆76Updated 2 years ago
- ☆21Updated 4 months ago
- Port of zentool to Windows☆24Updated 3 months ago
- ANY.RUN sandbox detection collection☆19Updated 10 months ago
- Load dll with undocumented functions and debug symbols☆47Updated 11 months ago
- Hooking Windows' exception dispatcher to protect process's PML4☆178Updated 5 months ago
- POC Hook of nt!HvcallCodeVa☆52Updated 2 years ago
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆145Updated 10 months ago
- Using Windows' own bootloader as a shim to bypass Secure Boot☆173Updated 11 months ago