thetuh / anticheat-poc
A proof of concept user mode anti-cheat for x86 applications
☆13Updated last year
Related projects ⓘ
Alternatives and complementary repositories for anticheat-poc
- Black Signature Driver☆22Updated last year
- Signature scanner and API hooks to detect malicious process injection☆18Updated last year
- Analysing and defeating PatchGuard universally☆34Updated 4 years ago
- AMx64 is a simulated 64-bit environment that can interpret nasm-like asm code. It allows a usage of different 64-bit registers and 64-bit…☆23Updated 10 months ago
- ☆22Updated 2 years ago
- Example of making debugger using Hardware Breakpoint + VEH☆15Updated 3 years ago
- Some eternal WIP stuff :)☆15Updated 4 months ago
- Remote memory library in C++17.☆30Updated 6 years ago
- LPC (Local Procedure Call) is a portion of Windows NT kernel, used for fast communication between threads or processes. It can be also us…☆13Updated 3 years ago
- ☆15Updated 4 years ago
- Small class to parse debug info from PEs, download their respective PDBs from the Microsoft Public Symbol Server and calculate RVAs of fu…☆41Updated last year
- Logging library for kernel drivers written for the Windows NT operating system.☆18Updated 5 months ago
- Windows driver template, using C++20 & cmake & GithubActions☆19Updated 3 months ago
- https://www.huorong.cn/☆14Updated 7 months ago
- ☆26Updated last year
- UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.☆44Updated last year
- ☆47Updated 6 years ago
- ☆13Updated 2 years ago
- ☆29Updated 3 years ago
- Small memory leak PoC that is happening in IopGetDeviceInterfaces☆23Updated 4 years ago
- combine the power of procmon and dbgview into one single application☆7Updated 9 months ago
- ☆28Updated 10 months ago
- Disable threat tracing from the kernel..☆12Updated 2 years ago
- BypaPH - Process Hacker's bypass (read/write any process virtual memory & kernel mem) 带签名驱动,驱动级内存读取☆19Updated 4 years ago
- PDB Explorer 是一个能够查看 微软 pdb 文件(Program DataBase,程序数据库)的工具,它能够将 pdb 文件中的 struct、union 及 enum 类型的定义以 C/C++ 的语法显示出来,特别适合 Windows 底层研究人员及 DDK …☆37Updated 9 years ago
- Memory Dumper For Win10 x64 Processes☆14Updated 4 years ago
- ☆24Updated 7 years ago