monitors hidden syscalls called from call of duty anticheat
☆90Jan 13, 2025Updated last year
Alternatives and similar repositories for hidden_syscall_monitoring
Users that are interested in hidden_syscall_monitoring are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures☆38Sep 22, 2024Updated last year
- Folder Or File Delete to Get System Shell on Current Session Desktop☆47Jan 14, 2025Updated last year
- Manually maps a DLL & replaces a target process's entry point.☆23Mar 1, 2025Updated last year
- CMake template for a basic EFI application/bootkit. This library is header-only, there is no EDK2 runtime!).☆80Sep 18, 2022Updated 3 years ago
- Windows Console Monitor☆34Jun 11, 2019Updated 7 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- ☆26Jan 6, 2025Updated last year
- Binary rewriter for 64-bit PE files.☆104Feb 5, 2024Updated 2 years ago
- LPC (Local Procedure Call) is a portion of Windows NT kernel, used for fast communication between threads or processes. It can be also us…☆17Mar 21, 2021Updated 5 years ago
- Bring Your Own Vulnerable Driver for PatchGuard & Driver Signature Enforcement☆16Apr 6, 2024Updated 2 years ago
- kernel-mode DLL Injector☆143Apr 25, 2026Updated 2 months ago
- WinDbg-ext-MCP bridges your favorite LLM client (like Cursor, Claude, or VS Code) with WinDbg, enabling real-time, AI assisted kernel deb…☆109Sep 10, 2025Updated 9 months ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated last year
- Sleep obfuscation☆275Dec 13, 2024Updated last year
- An x86-64 Code Virtualizer☆321Sep 26, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- The kernel mode Standard Template Library Template☆19Feb 22, 2020Updated 6 years ago
- An anti-cheat project that includes kernel mode.☆39Jul 29, 2021Updated 4 years ago
- Blocking Windows EDR agents by registering an own IPC-object in the Object Manager’s namespace (CVE-2023-3280, CVE-2024-5909, CVE-2024-20…☆37Feb 27, 2025Updated last year
- InfinityHookProMax: Make InfinityHook great great again☆53Aug 25, 2023Updated 2 years ago
- Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths☆360Aug 11, 2024Updated last year
- A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering☆43Jun 10, 2025Updated last year
- Proof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijac…☆274Oct 31, 2024Updated last year
- Compile-Time Calls Obfuscator for C++14+☆51Dec 7, 2023Updated 2 years ago
- bootkit驱动映射,三环进程注入加载指定模块☆14Oct 8, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Hooking Windows' exception dispatcher to protect process's PML4☆257Jan 24, 2025Updated last year
- Packet deobfuscation for FFXIV☆20Jun 23, 2026Updated last week
- High-level library for executable binary file analysis☆16Feb 13, 2017Updated 9 years ago
- Proof-of-concept post-build obfuscator for Unity IL2CPP projects☆40Jan 12, 2025Updated last year
- Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR …☆311Jul 31, 2024Updated last year
- HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate oper…☆382Jun 3, 2023Updated 3 years ago
- ☆32Mar 9, 2024Updated 2 years ago
- Stealing signatures from pe files☆14Apr 1, 2025Updated last year
- TypeLib persistence technique☆147Oct 22, 2024Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Detect WFP filters blocking EDR communications☆97Jan 5, 2024Updated 2 years ago
- FFXIV network proxy library☆21Feb 18, 2026Updated 4 months ago
- Implementation of a dispatcher for Structured Exceptions inside a Vectored Exception Handler☆42Feb 15, 2020Updated 6 years ago
- ☆102Oct 6, 2023Updated 2 years ago
- Check if your AV/EDR does inline hooking, displays the hooked functions and allows you to compare them with the original ones.☆43Apr 2, 2026Updated 3 months ago
- Integration of Microsoft Warbird with the MSVC compiler☆133Jul 16, 2023Updated 2 years ago
- Static user/kernel mode library that allows access to all functions and global variables by extracting offsets from the PDB☆128May 29, 2025Updated last year