un4ckn0wl3z / PCIE-DetectorView external linksLinks
Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures
☆38Sep 22, 2024Updated last year
Alternatives and similar repositories for PCIE-Detector
Users that are interested in PCIE-Detector are comparing it to the libraries listed below
Sorting:
- x86-64 Automated test data generator☆26Aug 18, 2025Updated 5 months ago
- NASM listing to shellcode converter☆14May 6, 2018Updated 7 years ago
- PDB Rewriting Rust Library☆27Apr 26, 2024Updated last year
- monitors hidden syscalls called from call of duty anticheat☆89Jan 13, 2025Updated last year
- ☆29Mar 9, 2024Updated last year
- ☆28Aug 3, 2024Updated last year
- Exploit POC for CVE-2024-36877☆48Aug 14, 2024Updated last year
- Efficient general mixed boolean-arithmetic (MBA) simplifier☆121Updated this week
- Windows kernel debugger for Linux hosts running Windows under KVM/QEMU☆123Feb 9, 2026Updated last week
- SMM driver/rootkit for platform memory access with R3 <-> R0 <-> R-2 communication.☆118Oct 15, 2024Updated last year
- ☆16Oct 31, 2022Updated 3 years ago
- x86/x64 Ring 0/-2 System Freezer/Debugger☆120May 21, 2025Updated 8 months ago
- clearing traces of a loaded driver☆47Jul 2, 2022Updated 3 years ago
- A demonstration of hooking into the VMProtect-2 virtual machine☆23Nov 9, 2023Updated 2 years ago
- partially disable patchguard up to win11 21H2☆19Jun 3, 2024Updated last year
- ☆39Mar 23, 2023Updated 2 years ago
- Library to manipulate drivers that expose a physical memory read/write primitive.☆39Sep 4, 2023Updated 2 years ago
- Simple proof of concept kernel mode driver hooking tpm.sys dispatch to randomize any public key reads☆237Dec 16, 2023Updated 2 years ago
- In-memory hiding technique☆63Jan 5, 2025Updated last year
- Simple and lightweight hypervisor for AMD processors☆44Oct 25, 2025Updated 3 months ago
- Elevate arbitrary MSR writes to kernel execution.☆44Sep 3, 2023Updated 2 years ago
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆253Oct 26, 2024Updated last year
- A large collection of 32bit and 64bit PE files useful for verifying the correctness of bin2bin transformations☆67Aug 2, 2024Updated last year
- Standard Kernel Library for Windows manipulation in C++☆199Jun 18, 2025Updated 7 months ago
- Walks the CFG bitmap to find previously executable but currently hidden shellcode regions☆132May 17, 2023Updated 2 years ago
- Example of waiting for Event Objects by associating them with a I/O Completion Port (IOCP), effectively lifting MAXIMUM_WAIT_OBJECTS (64)…☆41Oct 14, 2024Updated last year
- Monitor Kernel pool allocations tags☆77Nov 2, 2023Updated 2 years ago
- A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.☆100Jan 3, 2026Updated last month
- Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.☆29Apr 3, 2025Updated 10 months ago
- Virtualization Simply Code☆25May 13, 2022Updated 3 years ago
- Activate Windows & Office 🔑☆13Jun 15, 2024Updated last year
- remem is a C++ library designed for memory manipulation, function calling, and pattern scanning. It supports various calling conventions,…☆10Aug 23, 2024Updated last year
- Generate Go bindings for shared C libraries.☆15Jul 13, 2024Updated last year
- Windows PDB parser for kernel-mode environment.☆106Jun 7, 2025Updated 8 months ago
- Small tool to convert beteween the PE alignments (raw and virtual).☆111Dec 28, 2022Updated 3 years ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated 10 months ago
- Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!☆408Apr 19, 2025Updated 9 months ago
- windows kernel pagehook☆41Oct 30, 2022Updated 3 years ago
- ☆28Dec 20, 2025Updated last month