x0reaxeax / rwlazer64

Related projects ⓘ

Alternatives and complementary repositories for rwlazer64

• samshine / ScyllaHideDetector2
  Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.
  ☆24Updated 5 years ago
• xsh3llsh0ck / ResilienceKit
  Another UEFI runtime bootkit
  ☆30Updated last year
• ekknod / efi-monitor
  just proof of concept. hooking MmCopyMemory PG safe.
  ☆63Updated last year
• lennyRBLX / ret_addr_spoofer
  Compileable POC of namazso's x64 return address spoofer.
  ☆47Updated 4 years ago
• greyb1t / GreyM
  Me fockin' pe protector
  ☆45Updated 2 years ago
• 0mWindyBug / DataptrHooks
  ntoskrnl .data hooks for UM-KM communication
  ☆34Updated 5 months ago
• xu-Wan / HypercallPageHook
  POC Hook of nt!HvcallCodeVa
  ☆50Updated last year
• zer0condition / Demystifying-PatchGuard
  Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…
  ☆106Updated last year
• i32-Sudo / SilentFunctionCaller
  Allows for same-file KernelMode function execution using Encrypted addresses of Functions
  ☆24Updated last month
• GetRektBoy724 / KPDB
  Windows PDB parser for kernel-mode environment.
  ☆90Updated last year
• 1hAck-0 / zeroimport
  ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel drive…
  ☆46Updated last year
• backengineering / Voyager
  A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)
  ☆41Updated last year
• Sentient111 / ClearDriverTraces
  clearing traces of a loaded driver
  ☆44Updated 2 years ago
• 4l3x777 / dse_pg_bypass
  DSE & PG bypass via BYOVD attack
  ☆37Updated 7 months ago
• cutecatsandvirtualmachines / Sputnik
  The sequel to Voyager
  ☆18Updated 3 months ago
• kkent030315 / anyvtop
  x64 Windows implementation of virtual-address to physical-address translation
  ☆41Updated 3 years ago
• ekknod / MouseClassServiceCallbackTrick
  ☆49Updated 2 years ago
• 0mWindyBug / KernelInjector
  PoC kernel to usermode injection
  ☆60Updated 8 months ago
• SamuelTulach / MemoryGuard
  Experiment with PAGE_GUARD protection to hide memory from other processes
  ☆39Updated 5 months ago
• Flerov / TS-Changer
  TS-Changer - Forces the machine in/out of TestSigning Mode at runtime.
  ☆64Updated last year
• build-cpp / wdk_template
  Windows kernel driver template for cmkr (with testsigning).
  ☆30Updated last year
• zer0condition / GDRVLib
  Virtual and physical memory hacking library using gigabyte vulnerable driver
  ☆70Updated last year
• xsh3llsh0ck / MilkBox
  Tool to dump EFI runtime drivers.
  ☆34Updated 9 months ago
• ByteWhite1x1 / PatchGuardResearch
  Bypassing kernel patch protection runtime
  ☆19Updated last year
• synctop / tpm-mmio
  Using MMIO (Memory-Mapped I/O) to read TPM 2.0 public Endorsement Key.
  ☆39Updated 5 months ago
• Xyrem / Arbitrary-Physical-Memory-RW
  ☆38Updated last year