x64 manualmapper with kernel elevation and thread hijacking capabilities
☆418Jan 3, 2020Updated 6 years ago
Alternatives and similar repositories for loadlibrayy
Users that are interested in loadlibrayy are comparing it to the libraries listed below
Sorting:
- Handle access elevation via direct kernel object manipulation☆118Jan 26, 2018Updated 8 years ago
- An usermode alternative for DuplicateHandle.☆177Aug 12, 2017Updated 8 years ago
- NoBastian - Universal Ring3 IPC based BattlEye/EAC/FaceIt/ESEA/MRAC bypass☆147Jun 17, 2018Updated 7 years ago
- x64 usermode rootkit☆211Apr 11, 2018Updated 7 years ago
- Hooking kernel functions by abusing alignment☆248Jan 5, 2021Updated 5 years ago
- Exploiting CPU-Z Driver To Turn Load Unsigned Drivers☆131Aug 10, 2017Updated 8 years ago
- An usermode BE Rootkit Bypass☆240May 1, 2019Updated 6 years ago
- C++17 PE manualmapper☆436Oct 2, 2021Updated 4 years ago
- Hide codes/data in the kernel address space.☆188May 8, 2021Updated 4 years ago
- BattlEye BEClient<->BEService usermode emulator☆82Nov 7, 2019Updated 6 years ago
- driver manual mapper (outdated/for educational purposes)☆115May 17, 2019Updated 6 years ago
- Reversing EasyAntiCheat.☆580Apr 19, 2019Updated 6 years ago
- C++ graphics kernel subsystem hook☆561Jan 11, 2021Updated 5 years ago
- Literally, the perfect injector.☆978Apr 13, 2023Updated 2 years ago
- ☆185May 5, 2019Updated 6 years ago
- A library to manipulate physical memory from usermode.☆303Sep 5, 2023Updated 2 years ago
- Using Driver Global Injection dll, it can hide DLL modules☆536Jun 28, 2019Updated 6 years ago
- driver mapper / capcom wrapper☆228Oct 29, 2019Updated 6 years ago
- Detect manualmapped images remotely, without hassle☆152Nov 3, 2017Updated 8 years ago
- pseudo-code to show how to disable patchguard with win10☆294Jan 13, 2018Updated 8 years ago
- The Win32 Anti-Intrusion Library☆213May 30, 2019Updated 6 years ago
- BattlEye x64 usermode injector☆66Mar 20, 2019Updated 6 years ago
- Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.☆902Nov 21, 2019Updated 6 years ago
- The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.☆344Apr 27, 2020Updated 5 years ago
- x86-64 virtual machine and disassembler☆147Nov 23, 2019Updated 6 years ago
- d3d11 hook x86/x64☆394Sep 26, 2019Updated 6 years ago
- Monitoring and controlling kernel API calls with stealth hook using EPT☆1,358Jan 22, 2022Updated 4 years ago
- This DKOM exploit enables any app in usermode to access physical memory directly☆228Nov 24, 2017Updated 8 years ago
- x64dbg plugin which removes anti-dumping and obfuscation techniques from the popular FPS game Overwatch.☆251May 29, 2021Updated 4 years ago
- Minimalistic VT-x hypervisor with hooks☆932Oct 18, 2019Updated 6 years ago
- This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemo…☆632Mar 19, 2019Updated 6 years ago
- Driver loader for bypassing Windows x64 Driver Signature Enforcement☆1,192Aug 1, 2019Updated 6 years ago
- kHypervisor is a lightweight bluepill-like nested VMM for Windows, it provides and emulating a basic function of Intel VT-x☆443Nov 29, 2021Updated 4 years ago
- Modify process handle permissions☆61Nov 30, 2016Updated 9 years ago
- Detecting execution of kernel memory where is not backed by any image file☆261Jul 11, 2018Updated 7 years ago
- Driver that uses network sockets to communicate with client and read/ write protected process memory.☆624Feb 22, 2019Updated 7 years ago
- hook msr by amd svm☆125Dec 30, 2019Updated 6 years ago
- Disable Driver Callbacks☆104Oct 16, 2017Updated 8 years ago
- Universal PatchGuard and Driver Signature Enforcement Disable☆862Mar 29, 2019Updated 6 years ago