utoni / PastDSE
DSE bypass using a leaked cert and adjusting the current clock.
☆147Updated 2 years ago
Alternatives and similar repositories for PastDSE:
Users that are interested in PastDSE are comparing it to the libraries listed below
- PoC Anti-Rootkit/Anti-Cheat Driver.☆184Updated 6 months ago
- Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…☆117Updated last year
- Bypassing PatchGuard on modern x64 systems☆254Updated last year
- Load your driver like win32k.sys☆251Updated 2 years ago
- KDP compatible unsigned driver loader leveraging a write primitive in one of the IOCTLs of gdrv.sys☆142Updated 9 months ago
- x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code☆203Updated 3 years ago
- Elevate a process to be a protected process☆144Updated 5 years ago
- ☆198Updated 2 years ago
- Bootkit for Windows Sandbox to disable DSE/PatchGuard.☆274Updated 5 months ago
- Inline syscalls made for MSVC supporting x64 and WOW64☆178Updated last year
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆244Updated 2 years ago
- Kernel LdrLoadDll injector☆257Updated 6 years ago
- Kernel driver loader using vulnerable gigabyte driver (https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vu…☆237Updated 3 years ago
- Detects virtual machines and malware analysis environments☆119Updated 2 years ago
- Kernel DLL Injector using NX Bit Swapping and VAD hide for hiding injected DLL☆210Updated 4 years ago
- Code Injection, Inject malicious payload via pagetables pml4.☆232Updated 3 years ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆302Updated 2 years ago
- Custom GetProcAddress, GetModuleHandleA and some dbghelp.dll functions☆80Updated 6 years ago
- Reverse engineering winapi function loadlibrary.☆187Updated last year
- ☆153Updated 5 years ago
- Walks the CFG bitmap to find previously executable but currently hidden shellcode regions☆112Updated last year
- A tool for detecting manual/direct syscalls in x86 and x64 processes using Nirvana Hooks.☆109Updated 3 years ago
- PoC capable of detecting manual syscalls from usermode.☆192Updated 4 months ago
- Hooking Windows' exception dispatcher to protect process's PML4☆155Updated 2 months ago
- This project migrated to https://github.com/backengineering/llvm-msvc☆140Updated last year
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆193Updated 4 months ago
- Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver☆167Updated last year
- Browse Page Tables on Windows (Page Table Viewer)☆196Updated 2 years ago
- DSE & PG bypass via BYOVD attack☆43Updated 11 months ago
- A proof of concept demonstrating instrumentation callbacks on Windows 10 21h1 with a TLS variable to ensure all syscalls are caught.☆127Updated 3 years ago