This DKOM exploit enables any app in usermode to access physical memory directly
☆228Nov 24, 2017Updated 8 years ago
Alternatives and similar repositories for EUPMAccess
Users that are interested in EUPMAccess are comparing it to the libraries listed below
Sorting:
- A library to manipulate physical memory from usermode.☆303Sep 5, 2023Updated 2 years ago
- An usermode alternative for DuplicateHandle.☆177Aug 12, 2017Updated 8 years ago
- driver mapper / capcom wrapper☆228Oct 29, 2019Updated 6 years ago
- ☆156Oct 29, 2019Updated 6 years ago
- Modify process handle permissions☆61Nov 30, 2016Updated 9 years ago
- Capcom wrapper with safety in mind.☆83May 27, 2018Updated 7 years ago
- Communication via callback☆73Oct 9, 2019Updated 6 years ago
- ☆27Oct 16, 2017Updated 8 years ago
- ☆99Oct 6, 2017Updated 8 years ago
- Abusing SpeedFan driver ability of physical memory manipulation☆119Mar 30, 2018Updated 7 years ago
- Exploiting CPU-Z Driver To Turn Load Unsigned Drivers☆131Aug 10, 2017Updated 8 years ago
- This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemo…☆632Mar 19, 2019Updated 6 years ago
- Disable Driver Callbacks☆104Oct 16, 2017Updated 8 years ago
- Hide codes/data in the kernel address space.☆188May 8, 2021Updated 4 years ago
- A library to read physical memory and system-wide virtual memory.☆128May 3, 2018Updated 7 years ago
- C++ graphics kernel subsystem hook☆561Jan 11, 2021Updated 5 years ago
- A driver that supports communication between a Windows guest and HyperWin☆15Jan 6, 2021Updated 5 years ago
- Hooking SSDT with Avast Internet Security Hypervisor☆115Apr 6, 2019Updated 6 years ago
- C++17 PE manualmapper☆436Oct 2, 2021Updated 4 years ago
- This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness☆53Sep 12, 2019Updated 6 years ago
- Detecting execution of kernel memory where is not backed by any image file☆261Jul 11, 2018Updated 7 years ago
- Hooking kernel functions by abusing alignment☆248Jan 5, 2021Updated 5 years ago
- by others☆40Jan 28, 2018Updated 8 years ago
- PatchGuard Research☆304Oct 6, 2018Updated 7 years ago
- The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.☆345Apr 27, 2020Updated 5 years ago
- Analysing and defeating PatchGuard universally☆36Nov 4, 2020Updated 5 years ago
- A library to read/write memory to Windows on KVM☆279Sep 11, 2020Updated 5 years ago
- ☆125May 23, 2020Updated 5 years ago
- win10 pgContext dynamic dump (btc version)☆110Jan 15, 2020Updated 6 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆66Apr 4, 2020Updated 5 years ago
- ☆110Nov 13, 2023Updated 2 years ago
- A driverless driver that is supposed to be manually mapped, usually by using TDL exploit. The driver shows how to read/write to any proce…☆22Oct 27, 2017Updated 8 years ago
- ☆57Nov 14, 2017Updated 8 years ago
- Hypervisor based tool for monitoring system register accesses.☆154Sep 13, 2018Updated 7 years ago
- init☆14Mar 16, 2020Updated 5 years ago
- Cheat that uses a driver instead WinAPI for Reading / Writing memory.☆755Jul 4, 2021Updated 4 years ago
- Stealthy Injector that leverages a vulnerable driver and other exploits to remain undetected☆37Dec 10, 2018Updated 7 years ago
- RVDbg is a debugger/exception handler for Windows processes and has the capability to circumvent anti-debugging techniques. (Cleaner, doc…☆72Sep 5, 2020Updated 5 years ago
- ☆39Oct 29, 2020Updated 5 years ago