vic4key / CFF_VExtension
VExtension for NTCore Explorer Suite aka CFF Explorer
☆37Updated 2 years ago
Related projects: ⓘ
- Debug Print viewer (user and kernel)☆63Updated 7 months ago
- X86/X64 Hardware Breakpoint Manager☆39Updated 3 years ago
- windows kernelmode driver to inject dll into each and every process and perform systemwide function hooking☆50Updated 2 years ago
- All Nt Syscall and W32k Syscall in one asm, include, and call it!☆57Updated 2 years ago
- Hide function calls to prevent reverse-engineering☆64Updated 3 years ago
- Use ntdll/ntoskrnl to implement Kernel32, Advapi32 and other APIs. It includes user-mode and kernel-mode.☆61Updated 3 weeks ago
- Small class to parse debug info from PEs, download their respective PDBs from the Microsoft Public Symbol Server and calculate RVAs of fu…☆39Updated last year
- Signature scanner and API hooks to detect malicious process injection☆18Updated last year
- This is just a x64dbg script system support.☆45Updated 2 years ago
- Global DLL injector☆63Updated 3 years ago
- direct systemcalls with a modern c++20 interface.☆41Updated last year
- Vutils or Vic Utilities is an utility library written in Modern C++ and for Modern C++. It helps your programming go easier, faster, and …☆68Updated last week
- The updated PE file manipulation library from RetDec project.☆19Updated 9 months ago
- Experimental disassembler for x86 binaries virtualized by VMProtect 3☆91Updated 2 years ago
- A tool that aims to aid in finding VM entries in binaries protected by VMProtect 3.5☆23Updated last year
- Based on minhook☆26Updated last year
- SlimDetours is an improved Windows API hooking library base on Microsoft Detours.☆34Updated last month
- Cpp Hooking - Set up function hooking easily and writing less code (P.S You can also find the python version @ https://github.com/vic4key…☆25Updated 9 months ago
- fix vmprotect import function used unicorn-engine.☆91Updated last year
- This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness☆50Updated 5 years ago
- ☆47Updated 5 years ago
- VMP Mutation API Fix☆37Updated 2 years ago
- A library with four different methods to execute shellcode in a process☆24Updated 4 years ago
- Sample for Creating a new kernel object type and supporting API☆20Updated 2 weeks ago
- View Windows System in action☆36Updated last month
- ☆20Updated last year
- Obfuscate calls to imports by patching in stubs☆58Updated 3 years ago
- Proof of concept for injecting a 64-bit DLL into a 32-bit application☆24Updated last year
- Windows Research Kernel VS2022 Solution☆22Updated 3 weeks ago
- Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.☆27Updated 2 years ago