x64dbg / lz4Links
☆13Updated 5 months ago
Alternatives and similar repositories for lz4
Users that are interested in lz4 are comparing it to the libraries listed below
Sorting:
- Finding Truth in the Shadows☆92Updated 2 years ago
- a demo module for the kaine agent to execute and inject assembly modules☆38Updated 9 months ago
- Exploiting the KsecDD Windows driver through Server Silos☆71Updated 6 months ago
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆63Updated last month
- An improved version of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆65Updated 2 months ago
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆76Updated last month
- Example of building an application verifer DLL☆46Updated last year
- Dll injection through code page id modification in registry. Based on jonas lykk research☆17Updated 2 years ago
- Uses Threat-Intelligence ETW events to identify shellcode regions being hidden by fluctuating memory protections☆134Updated 2 years ago
- find dll base addresses without PEB WALK☆91Updated 3 weeks ago
- ☆111Updated 2 years ago
- In-memory hiding technique☆54Updated 4 months ago
- A runtime for developing large-scale and complex shellcode.☆20Updated this week
- PoC exploit for HP Hardware Diagnostic's EtdSupp driver☆50Updated 2 years ago
- Next gen process injection technique☆53Updated 4 years ago
- Boilerplate to develop raw and truly Position Independent Code (PIC).☆51Updated 4 months ago
- Proof-of-concept game using VBS enclaves to protect itself from cheating☆40Updated 6 months ago
- ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption☆85Updated 2 years ago
- ☆39Updated 3 months ago
- Mentally ill EtwTi parser☆38Updated 2 months ago
- A set of LLVM and GCC based plugins that perform code obfuscation.☆123Updated 2 weeks ago
- Detect BypassUAC using AMSI☆23Updated 3 months ago
- kernel-mode DLL Injector☆81Updated last month
- Get your data from the resource section manually, with no need for windows apis☆62Updated 7 months ago
- silence file system monitoring components by hooking their minifilters☆57Updated last year
- Exploit for eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W☆34Updated last month
- Detours implementation (x64/x86) which used only ntdll import☆89Updated 11 months ago
- ☆86Updated 9 months ago
- ☆31Updated 5 months ago
- Simple ETW unhook PoC. Overwrites NtTraceEvent opcode to disable ETW at Nt-function level.☆47Updated last year