vmcall / owned_alignment
Hooking kernel functions by abusing alignment
☆240Updated 4 years ago
Alternatives and similar repositories for owned_alignment:
Users that are interested in owned_alignment are comparing it to the libraries listed below
- The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.☆282Updated 4 years ago
- Module extending manual mapper☆326Updated 4 years ago
- a more stable & secure read/write virtual memory for kernel mode drivers☆164Updated 5 years ago
- Proof of concept on how to bypass some limitations of a manual mapped driver☆168Updated 4 years ago
- driver mapper / capcom wrapper☆219Updated 5 years ago
- Intercepting DeviceControl via WPP☆131Updated 5 years ago
- ☆184Updated 5 years ago
- Windows kernel samples☆248Updated 5 years ago
- Kernel mode bypass for BattlEye, EAC☆187Updated last year
- manually map driver for a signed driver memory space☆152Updated 4 years ago
- 09/2021 reversal of EasyAntiCheat driver☆214Updated 3 years ago
- C++17 PE manualmapper☆333Updated 3 years ago
- ☆139Updated 4 years ago
- Simple code to manipulate the memory of a usermode process from kernel.☆274Updated 8 years ago
- This is a source to a bypass i made for some games, for now this should work f or VAC, BE and EAC. The only downside is that you will nee…☆182Updated 4 years ago
- A customizable process dumper.☆138Updated 5 years ago
- Rendering on external windows via hijacking thread contexts☆381Updated 4 years ago
- ☆153Updated 5 years ago
- ☆164Updated 7 years ago
- Emulate Drivers in RING3 with self context mapping or unicorn☆332Updated 2 years ago
- A mapper that maps shellcode into loaded large page drivers☆262Updated 2 years ago
- Kernel cheat with kernel hook for communication☆297Updated 3 years ago
- A library to manipulate physical memory from usermode.☆292Updated last year
- This bypass is for anti cheats like battleye and EAC. All this does is abuse lsass's handles and use them for yourself. This is quite use…☆107Updated 4 years ago
- Stealthy UM <-> KM communication system without creating any system threads, permanent hooks, driver objects, section objects or device o…☆372Updated last year
- Minimalistic AMD-V/SVM hypervisor with memory introspection capabilities☆241Updated 3 weeks ago
- ☆177Updated 3 years ago
- An Injector that can inject dll into game process protected by anti cheat using SetWindowsHookEx.☆242Updated 5 years ago
- Just my first IOCTL try☆72Updated 4 years ago
- BattlEye shellcodes tester☆140Updated 3 years ago