modify from memorymodule. support exception
☆223Oct 22, 2020Updated 5 years ago
Alternatives and similar repositories for MemoryModulePP
Users that are interested in MemoryModulePP are comparing it to the libraries listed below
Sorting:
- MemoryModule which compatible with Win32 API and support exception handling☆448Feb 11, 2025Updated last year
- Windows Kernel Driver with C++ runtime☆181Sep 26, 2020Updated 5 years ago
- Using Driver Global Injection dll, it can hide DLL modules☆536Jun 28, 2019Updated 6 years ago
- Hide codes/data in the kernel address space.☆188May 8, 2021Updated 4 years ago
- VMProtect 3.x Anti-debug Method Improved☆652May 11, 2019Updated 6 years ago
- ☆36Oct 29, 2020Updated 5 years ago
- Confirms the capability of Hardware-Accelerated Virtualization Technology.☆10Oct 26, 2025Updated 4 months ago
- kHypervisor is a lightweight bluepill-like nested VMM for Windows, it provides and emulating a basic function of Intel VT-x☆443Nov 29, 2021Updated 4 years ago
- ☆27May 27, 2017Updated 8 years ago
- ☆11Sep 28, 2017Updated 8 years ago
- This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemo…☆632Mar 19, 2019Updated 6 years ago
- An Ark tool project,run on Win7 x86/x64☆118Jul 11, 2017Updated 8 years ago
- A hypervisor hiding user-mode memory using EPT☆107Jan 28, 2018Updated 8 years ago
- An Attempt to Bypass Memory Scanners By Misusing the ntdll.dll "RT" Section.☆100Jan 3, 2016Updated 10 years ago
- ☆17Mar 3, 2016Updated 9 years ago
- ☆125May 23, 2020Updated 5 years ago
- ☆99Oct 6, 2017Updated 8 years ago
- open-source x86/x64 usermode anti-anti-debug plugin☆231Mar 17, 2020Updated 5 years ago
- ☆48Jun 19, 2017Updated 8 years ago
- Rapid generation ShellCode☆60Sep 12, 2017Updated 8 years ago
- A tool similar to netcat, but tunneled over DNS☆18Mar 10, 2017Updated 8 years ago
- createfile☆50Oct 27, 2015Updated 10 years ago
- Kinject - kernel dll injector, currently available in x86 version, will be updated to x64 soon.☆32Apr 10, 2015Updated 10 years ago
- Collect different versions of Crucial modules.☆144Jul 11, 2024Updated last year
- Some garbage drivers written for getting started☆66Dec 31, 2019Updated 6 years ago
- The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.☆344Apr 27, 2020Updated 5 years ago
- Kernel DLL Injector using NX Bit Swapping and VAD hide for hiding injected DLL☆219Nov 12, 2020Updated 5 years ago
- PatchGuard Research☆304Oct 6, 2018Updated 7 years ago
- Hide Driver By MiProcessLoaderEntry☆294May 17, 2019Updated 6 years ago
- Modify process handle permissions☆61Nov 30, 2016Updated 9 years ago
- VT-based PCI device monitor (SPI)☆158Oct 29, 2020Updated 5 years ago
- Hide DLL / Hide Module / Hide Dynamic Link Library☆108May 28, 2019Updated 6 years ago
- Kernel Anit Anit Debug Plugins 内核反反调试插件☆479Aug 31, 2021Updated 4 years ago
- ☆14Jan 10, 2017Updated 9 years ago
- codes for my blog post: https://secrary.com/Random/InstrumentationCallback/☆183Nov 30, 2017Updated 8 years ago
- Notes my learning steps about Windows-NT☆23May 18, 2017Updated 8 years ago
- ☆21Jul 18, 2017Updated 8 years ago
- PoC of BOOST-ed _EPROCESS.VadRoot iterating☆27May 21, 2014Updated 11 years ago
- Exploiting CPU-Z Driver To Turn Load Unsigned Drivers☆131Aug 10, 2017Updated 8 years ago