Provides commands to read from and write to arbitrary kernel-mode memory for users with the Administrator privilege. HVCI compatible. No test signing mode is required.
☆24Jun 16, 2024Updated last year
Alternatives and similar repositories for recon2024_demo
Users that are interested in recon2024_demo are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆92Jun 3, 2024Updated last year
- Report and exploit of CVE-2024-21305.☆42Jan 14, 2024Updated 2 years ago
- .lib file for linking against the NT CRT☆19Mar 18, 2022Updated 4 years ago
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆83Dec 21, 2022Updated 3 years ago
- POC Hook of nt!HvcallCodeVa☆55May 8, 2023Updated 3 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Exploit POC for CVE-2024-36877☆49Aug 14, 2024Updated last year
- ☆32Mar 9, 2024Updated 2 years ago
- An advanced DKOM for drivers with "DRIVER_OBJECT"☆23Feb 19, 2023Updated 3 years ago
- Different tools for Microsoft Hyper-V researching☆74May 17, 2026Updated last week
- research revolving the windows filtering platform callout mechanism☆42May 26, 2024Updated 2 years ago
- ☆12Jul 12, 2022Updated 3 years ago
- load unsigned kernel-driver by patching dse in 248 lines☆148Mar 22, 2024Updated 2 years ago
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆25Mar 26, 2020Updated 6 years ago
- Collection of hypervisor detections☆311Sep 25, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ☆17Feb 6, 2019Updated 7 years ago
- Library to manipulate drivers that expose a physical memory read/write primitive.☆48Sep 4, 2023Updated 2 years ago
- List UEFI Configuration Tables☆14May 23, 2024Updated 2 years ago
- just proof of concept. hooking MmCopyMemory PG safe.☆86Nov 13, 2023Updated 2 years ago
- Windows kernel driver that detects hypervisors by probing SIDT/LIDT edge cases, paging/TLB behaviors, privilege transitions, and timing e…☆46Mar 3, 2026Updated 2 months ago
- ☆23May 8, 2023Updated 3 years ago
- Virtual and physical memory hacking library using gigabyte vulnerable driver☆70Mar 16, 2026Updated 2 months ago
- Binary Ninja plugin to perform automated analysis of Windows drivers☆20Aug 8, 2019Updated 6 years ago
- ☆25May 26, 2021Updated 5 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Bypassing kernel patch protection runtime☆22Feb 19, 2023Updated 3 years ago
- ☆11Mar 5, 2020Updated 6 years ago
- ☆23Oct 15, 2024Updated last year
- Sample for Creating a new kernel object type and supporting API☆28Sep 7, 2024Updated last year
- ☆38Sep 26, 2024Updated last year
- it's a driver injector or driver loader header lib(Windows)☆13Aug 5, 2023Updated 2 years ago
- AntiCrack-cpp is a C++ library designed to provide anti-virtualization and anti-debugging capabilities for your applications.☆12Jun 8, 2024Updated last year
- ☆143Dec 10, 2022Updated 3 years ago
- Reimplementation of the KExecDD DSE bypass technique.☆61Sep 7, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- SMM driver/rootkit for platform memory access with R3 <-> R0 <-> R-2 communication.☆121Oct 15, 2024Updated last year
- Rookit and anti rookit on Windows platform☆14Apr 30, 2024Updated 2 years ago
- ☆22Oct 18, 2023Updated 2 years ago
- ☆13Sep 9, 2021Updated 4 years ago
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆275Mar 16, 2026Updated 2 months ago
- win32json Parser for TypeLibrary creation☆12Feb 10, 2022Updated 4 years ago
- reverse engineering of the windows nt kernel debugger protocol & reimplementation.☆38Jul 2, 2024Updated last year