The dll that can hide itself and then delete itselft.
☆32Mar 31, 2013Updated 12 years ago
Alternatives and similar repositories for HideModule
Users that are interested in HideModule are comparing it to the libraries listed below
Sorting:
- 进程保护☆17Mar 31, 2013Updated 12 years ago
- The Network project is a C++ encapsulation of WinSock2 to form a lightweight network library; The Graphics project is a C++ encapsulation…☆13Oct 31, 2017Updated 8 years ago
- Notes my learning steps about Windows-NT☆23May 18, 2017Updated 8 years ago
- Minifilter Driver☆15Feb 10, 2017Updated 9 years ago
- Example library for how to dynamically/statically hook/intercept unmanaged functions and APIs☆13Nov 9, 2022Updated 3 years ago
- Kinject - kernel dll injector, currently available in x86 version, will be updated to x64 soon.☆32Apr 10, 2015Updated 10 years ago
- Windows Kernel Driver - Create a driver device in TDI layer of windows kernel to capture network data packets☆36Jul 21, 2014Updated 11 years ago
- Wow64 syscall hook☆43May 28, 2017Updated 8 years ago
- Webel is an independent C++ implementation of sockets, TLS, HTTP, HTML, JSON and more, in a Windows service framework suitable for web cr…☆13Feb 23, 2025Updated last year
- ☆18Dec 5, 2016Updated 9 years ago
- analyze the content of the pe file on windows, and shell(pack) function for windows drivers.☆11Nov 9, 2018Updated 7 years ago
- ☆19Jul 20, 2015Updated 10 years ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆78Aug 12, 2015Updated 10 years ago
- User-mode kernel callback framework☆10Nov 16, 2013Updated 12 years ago
- Inject codes to another process to watch and operate other process. This is usually used as anti-virus software.☆15Sep 19, 2015Updated 10 years ago
- A simple tool to help reverse engineers while dealing with obfuscated code.☆20Sep 5, 2016Updated 9 years ago
- A system call tracer☆10Sep 22, 2014Updated 11 years ago
- Protect process fsfilter driver. Windows x64☆36Apr 11, 2016Updated 9 years ago
- ☆61Mar 4, 2019Updated 7 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆79Jan 24, 2011Updated 15 years ago
- windows kernel File redirection☆20Sep 21, 2014Updated 11 years ago
- hypervisor in windows device driver by intel vt☆14Aug 25, 2018Updated 7 years ago
- Windows device tree walker☆15Sep 19, 2018Updated 7 years ago
- Hidden module/dll detector for windows apps☆15May 21, 2017Updated 8 years ago
- ☆11Sep 28, 2017Updated 8 years ago
- Simple program for static hooking dynamic libraries in executable application☆24Jan 15, 2014Updated 12 years ago
- WIP - Play with Intel VM Extensions☆23Jun 12, 2017Updated 8 years ago
- Reflective DLL Injection style process infector☆20Jul 23, 2018Updated 7 years ago
- Modify process handle permissions☆61Nov 30, 2016Updated 9 years ago
- A sample on how to inject a DLL from a kernel driver☆61Sep 13, 2016Updated 9 years ago
- Hidden kernel mode code execution for bypassing modern anti-rootkits.☆85Dec 23, 2010Updated 15 years ago
- This project demonstares an illegal read- and write- access to the kernel-mode data for both allocated by 3rd party drivers and EPROCESS …☆13Mar 6, 2018Updated 8 years ago
- 内核级ARK工具。☆62Aug 1, 2016Updated 9 years ago
- ShellcodeVM☆15Jun 20, 2016Updated 9 years ago
- Examples for detection of hidden processes on windows☆35Jun 11, 2014Updated 11 years ago
- Simple header only library to change return address on current stack frame.☆22Sep 4, 2016Updated 9 years ago
- ☆17Mar 3, 2016Updated 10 years ago
- Anti-virus engine in Windows using VC++ 6.0 and MFC. We applied windows multithreading in virus scan method and user interface. Using MFC…☆16Oct 21, 2016Updated 9 years ago
- GreenKit is an userland rootkit hiding its own files and mining bitcoins on compromised computers. Do /NOT/ download or use this rootkit …☆47Jan 19, 2018Updated 8 years ago