Provides commands to read from and write to arbitrary kernel-mode memory for users with the Administrator privilege. HVCI compatible. No test signing mode is required.
☆24Jun 16, 2024Updated last year
Alternatives and similar repositories for recon2024_demo
Users that are interested in recon2024_demo are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆93Jun 3, 2024Updated last year
- Report and exploit of CVE-2024-21305.☆42Jan 14, 2024Updated 2 years ago
- .lib file for linking against the NT CRT☆19Mar 18, 2022Updated 4 years ago
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆83Dec 21, 2022Updated 3 years ago
- ☆29Mar 9, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- POC Hook of nt!HvcallCodeVa☆54May 8, 2023Updated 2 years ago
- Exploit POC for CVE-2024-36877☆48Aug 14, 2024Updated last year
- An advanced DKOM for drivers with "DRIVER_OBJECT"☆23Feb 19, 2023Updated 3 years ago
- Different tools for Microsoft Hyper-V researching☆73Mar 25, 2026Updated 3 weeks ago
- research revolving the windows filtering platform callout mechanism☆39May 26, 2024Updated last year
- ☆12Jul 12, 2022Updated 3 years ago
- load unsigned kernel-driver by patching dse in 248 lines☆147Mar 22, 2024Updated 2 years ago
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆25Mar 26, 2020Updated 6 years ago
- Collection of hypervisor detections☆302Sep 25, 2024Updated last year
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- ☆18Feb 6, 2019Updated 7 years ago
- Library to manipulate drivers that expose a physical memory read/write primitive.☆46Sep 4, 2023Updated 2 years ago
- List UEFI Configuration Tables☆14May 23, 2024Updated last year
- just proof of concept. hooking MmCopyMemory PG safe.☆86Nov 13, 2023Updated 2 years ago
- ☆23May 8, 2023Updated 2 years ago
- Windows kernel driver that detects hypervisors by probing SIDT/LIDT edge cases, paging/TLB behaviors, privilege transitions, and timing e…☆43Mar 3, 2026Updated last month
- Virtual and physical memory hacking library using gigabyte vulnerable driver☆70Mar 16, 2026Updated last month
- Binary Ninja plugin to perform automated analysis of Windows drivers☆20Aug 8, 2019Updated 6 years ago
- ☆24May 26, 2021Updated 4 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆11Mar 5, 2020Updated 6 years ago
- Bypassing kernel patch protection runtime☆22Feb 19, 2023Updated 3 years ago
- ☆36Sep 26, 2024Updated last year
- ☆22Oct 15, 2024Updated last year
- Sample for Creating a new kernel object type and supporting API☆28Sep 7, 2024Updated last year
- AntiCrack-cpp is a C++ library designed to provide anti-virtualization and anti-debugging capabilities for your applications.☆13Jun 8, 2024Updated last year
- it's a driver injector or driver loader header lib(Windows)☆12Aug 5, 2023Updated 2 years ago
- ☆143Dec 10, 2022Updated 3 years ago
- ☆24Jul 24, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Reimplementation of the KExecDD DSE bypass technique.☆61Sep 7, 2024Updated last year
- SMM driver/rootkit for platform memory access with R3 <-> R0 <-> R-2 communication.☆118Oct 15, 2024Updated last year
- Rookit and anti rookit on Windows platform☆14Apr 30, 2024Updated last year
- ☆22Oct 18, 2023Updated 2 years ago
- ☆13Sep 9, 2021Updated 4 years ago
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…��☆262Mar 16, 2026Updated last month
- win32json Parser for TypeLibrary creation☆12Feb 10, 2022Updated 4 years ago