ssnob / hidden_syscall_monitoring
monitors hidden syscalls called from call of duty anticheat
☆73Updated 2 months ago
Alternatives and similar repositories for hidden_syscall_monitoring:
Users that are interested in hidden_syscall_monitoring are comparing it to the libraries listed below
- C++ macro for x64 programs that breaks ida hex-rays decompiler tool.☆108Updated 11 months ago
- Generate a PDB file given the old PDB file and an address mapping☆42Updated 2 weeks ago
- Hooking Windows' exception dispatcher to protect process's PML4☆158Updated 2 months ago
- Proof-of-concept game using VBS enclaves to protect itself from cheating☆39Updated 4 months ago
- Header-only C++ library for producing PE files.☆31Updated last year
- An x86-64 code virtualizer for VM based obfuscation☆109Updated 3 months ago
- Load dll with undocumented functions and debug symbols☆47Updated 8 months ago
- Finding Truth in the Shadows☆89Updated 2 years ago
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆132Updated 7 months ago
- Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…☆119Updated last year
- A universal binary patching dll.☆86Updated 5 months ago
- Compileable POC of namazso's x64 return address spoofer.☆51Updated 4 years ago
- ☆82Updated 9 months ago
- Report and exploit of CVE-2024-21305.☆35Updated last year
- Integration of Microsoft Warbird with the MSVC compiler☆101Updated last year
- PoC exploit for HP Hardware Diagnostic's EtdSupp driver☆50Updated last year
- bypassing intel txt's tboot integrity checks via coreboot shim☆64Updated 2 weeks ago
- Fully working kernel-mode VAC bypass☆62Updated last month
- Using Windows' own bootloader as a shim to bypass Secure Boot☆168Updated 8 months ago
- A journal for $6,000 Riot Vanguard bounty.☆62Updated last year
- Kernel ReClassEx☆65Updated last year
- Hook all callbacks which are registered with LdrRegisterDllNotification☆85Updated 2 years ago
- Detours implementation (x64/x86) which used only ntdll import☆90Updated 9 months ago
- Code from process of reversing Sysinternals Suite for educational purposes, with videos to associate them☆48Updated last year
- PoC Anti-Rootkit/Anti-Cheat Driver.☆184Updated 6 months ago
- 🎨 Seamlessly convert your favorite Visual Studio Code themes to IDA Pro themes.☆98Updated 11 months ago
- compile-time control flow obfuscation using mba☆181Updated last year
- x86-64 user mode emulation using Zydis☆45Updated 2 months ago
- ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel drive…☆48Updated 2 years ago
- A set of LLVM and GCC based plugins that perform code obfuscation.☆121Updated 3 weeks ago