Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures
☆38Sep 22, 2024Updated last year
Alternatives and similar repositories for PCIE-Detector
Users that are interested in PCIE-Detector are comparing it to the libraries listed below
Sorting:
- x86-64 Automated test data generator☆26Aug 18, 2025Updated 6 months ago
- NASM listing to shellcode converter☆14May 6, 2018Updated 7 years ago
- PDB Rewriting Rust Library☆27Apr 26, 2024Updated last year
- monitors hidden syscalls called from call of duty anticheat☆89Jan 13, 2025Updated last year
- The materials of the "Hypervisors for Hackers: Security from the Hardware Up" class held at Global Cybersecurity Camp 2026 Vietnam.☆44Updated this week
- ☆29Aug 3, 2024Updated last year
- ☆29Mar 9, 2024Updated 2 years ago
- Exploit POC for CVE-2024-36877☆48Aug 14, 2024Updated last year
- Efficient general mixed boolean-arithmetic (MBA) simplifier☆124Mar 1, 2026Updated last week
- Windows kernel debugger for Linux hosts running Windows under KVM/QEMU☆132Feb 28, 2026Updated last week
- SMM driver/rootkit for platform memory access with R3 <-> R0 <-> R-2 communication.☆119Oct 15, 2024Updated last year
- ☆17Oct 31, 2022Updated 3 years ago
- x86/x64 Ring 0/-2 System Freezer/Debugger☆120May 21, 2025Updated 9 months ago
- clearing traces of a loaded driver☆47Jul 2, 2022Updated 3 years ago
- partially disable patchguard up to win11 21H2☆19Jun 3, 2024Updated last year
- A demonstration of hooking into the VMProtect-2 virtual machine☆24Nov 9, 2023Updated 2 years ago
- ☆41Mar 23, 2023Updated 2 years ago
- Library to manipulate drivers that expose a physical memory read/write primitive.☆41Sep 4, 2023Updated 2 years ago
- Simple proof of concept kernel mode driver hooking tpm.sys dispatch to randomize any public key reads☆236Dec 16, 2023Updated 2 years ago
- Simple and lightweight hypervisor for AMD processors☆44Oct 25, 2025Updated 4 months ago
- In-memory hiding technique☆63Jan 5, 2025Updated last year
- Elevate arbitrary MSR writes to kernel execution.☆45Sep 3, 2023Updated 2 years ago
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆253Oct 26, 2024Updated last year
- Standard Kernel Library for Windows manipulation in C++☆201Jun 18, 2025Updated 8 months ago
- Walks the CFG bitmap to find previously executable but currently hidden shellcode regions☆133May 17, 2023Updated 2 years ago
- A large collection of 32bit and 64bit PE files useful for verifying the correctness of bin2bin transformations☆72Aug 2, 2024Updated last year
- Example of waiting for Event Objects by associating them with a I/O Completion Port (IOCP), effectively lifting MAXIMUM_WAIT_OBJECTS (64)…☆42Oct 14, 2024Updated last year
- Monitor Kernel pool allocations tags☆77Nov 2, 2023Updated 2 years ago
- A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.☆100Jan 3, 2026Updated 2 months ago
- Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.☆29Apr 3, 2025Updated 11 months ago
- Virtualization Simply Code☆25May 13, 2022Updated 3 years ago
- Activate Windows & Office 🔑☆13Jun 15, 2024Updated last year
- Generate Go bindings for shared C libraries.☆15Jul 13, 2024Updated last year
- remem is a C++ library designed for memory manipulation, function calling, and pattern scanning. It supports various calling conventions,…☆10Aug 23, 2024Updated last year
- Small tool to convert beteween the PE alignments (raw and virtual).☆112Dec 28, 2022Updated 3 years ago
- Windows PDB parser for kernel-mode environment.☆110Jun 7, 2025Updated 9 months ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated 11 months ago
- Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!☆408Apr 19, 2025Updated 10 months ago
- windows kernel pagehook☆42Oct 30, 2022Updated 3 years ago