A few examples of how to trap virtual memory access on Windows.
☆42Dec 18, 2024Updated last year
Alternatives and similar repositories for windows-memory-access-traps
Users that are interested in windows-memory-access-traps are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- System Call Integrity Layer - experimental security research☆25Jan 31, 2026Updated last month
- A synergized Visual Studio and Rust development environment☆19Jan 25, 2025Updated last year
- lsassdump via RtlCreateProcessReflection and NanoDump☆86Oct 18, 2024Updated last year
- Troll TaskManager, and play with it .☆30Aug 3, 2025Updated 7 months ago
- Zero-dependency MCP server implementation.☆74Feb 23, 2026Updated last month
- My public talks☆14Oct 1, 2024Updated last year
- Dynamically invoke arbitrary code in Rust☆102Mar 16, 2026Updated last week
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…☆283Sep 18, 2024Updated last year
- idax: IDASDK extension libraries☆23Oct 12, 2025Updated 5 months ago
- T-1 is a shellcode loader that leverages ML techniques to detect VM environments☆34Oct 30, 2024Updated last year
- Simple example for getting started with eBPF for Windows☆50Feb 23, 2025Updated last year
- Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking☆438Jun 27, 2025Updated 8 months ago
- Playing with packets in C#☆15Aug 16, 2024Updated last year
- Admin to Kernel code execution using the KSecDD driver☆264Apr 19, 2024Updated last year
- Simple yara decompiler☆17Apr 8, 2017Updated 8 years ago
- ☆195Jul 29, 2024Updated last year
- really ?☆12Feb 29, 2024Updated 2 years ago
- ☆20Nov 8, 2020Updated 5 years ago
- Compile-time string crypter library for C++☆14May 7, 2021Updated 4 years ago
- Zero EAT touch way to retrieve function addresses (GetProcAddress on steroids)☆144Mar 16, 2024Updated 2 years ago
- Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies☆123May 29, 2024Updated last year
- ☆101Oct 7, 2023Updated 2 years ago
- A set of tools and exploits to cause DoS for remote Windows Server & Windows 11 machines☆32Feb 9, 2026Updated last month
- "Service-less" driver loading☆184Nov 28, 2024Updated last year
- VisualStudio port of https://github.com/guervild/BOFs/tree/dev/SilentLsassDump☆24Jul 6, 2023Updated 2 years ago
- Shellcode capable of bypassing EAF / IAF mitigations☆28Apr 11, 2023Updated 2 years ago
- Test AMSI Provider implementation in C#☆43Dec 18, 2024Updated last year
- Unix Process hollowing in rust☆22Dec 16, 2024Updated last year
- A New Exploitation Technique for Visual Studio Projects☆11Nov 5, 2023Updated 2 years ago
- Mentally ill EtwTi parser☆69Jan 11, 2026Updated 2 months ago
- a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor☆112Mar 25, 2024Updated last year
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆73Apr 13, 2025Updated 11 months ago
- Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in …☆55Dec 30, 2025Updated 2 months ago
- use python on windows with full submodule support without installation☆30Jan 23, 2025Updated last year
- List web account manager (WAM) accounts added to the current profile☆24Dec 11, 2025Updated 3 months ago
- A Ghidra extension for running Kotlin scripts☆16May 21, 2020Updated 5 years ago
- Process doppelganging POC using direct system calls, PPID spoofing and dropbox as an external delivery channel for the payload.☆17Jan 7, 2021Updated 5 years ago
- WinDbg plugin to trace module transitions from a debugged driver.☆47Dec 22, 2025Updated 3 months ago
- Sleep obfuscation☆271Dec 13, 2024Updated last year