yawenok / SSDT-Hook
The windows kernel ssdt hook demo
☆16Updated 6 years ago
Alternatives and similar repositories for SSDT-Hook:
Users that are interested in SSDT-Hook are comparing it to the libraries listed below
- viewing page boundaries of pages with PAGE_NOACCESS protection reveals the presence of x64dbg.☆23Updated 8 years ago
- just an lite AntiRootkit for interesting☆23Updated 9 years ago
- x64 Kernel Hooks Detection☆24Updated 8 years ago
- Hook IDT vector 0xb2 to detect SCI in 64bit windows.☆34Updated 2 years ago
- Data and structures regarding the research done on WdFilter☆12Updated 4 years ago
- ☆14Updated 7 years ago
- map driver to memory☆25Updated 6 years ago
- PoC of BOOST-ed _EPROCESS.VadRoot iterating☆25Updated 10 years ago
- windows kernel File redirection☆20Updated 10 years ago
- Demo List cm/ps/ob/minifilter callback And Patch/Bypass it☆28Updated 7 years ago
- What makes it page☆17Updated 2 years ago
- Shareds for kernel developement☆28Updated 11 years ago
- 大表哥的Syscall-Monitor☆34Updated 5 years ago
- ☆12Updated 8 months ago
- ☆28Updated 4 years ago
- ☆30Updated 6 years ago
- ☆19Updated 5 years ago
- A POC for Windows Extension Host hooking☆22Updated 5 years ago
- Map memory to user space and manipulate user memory, using capmon☆23Updated 6 years ago
- Some crazy PE executables protection kernel driver☆18Updated 4 years ago
- Protected Process Light Library☆18Updated 4 years ago
- enable libemu run pe file and add some good modify☆14Updated 6 years ago
- fork HoShiMin Avanguard☆19Updated 6 years ago
- ☆40Updated 5 years ago
- ☆27Updated 9 years ago
- ☆12Updated 8 years ago
- Detects if a Kernel mode debugger is active by reading the value of KUSER_SHARED_DATA.KdDebuggerEnabled. It is a high level and portable …☆23Updated 7 years ago
- Kernel-Mode rootkit that connects to a remote server to send & recv commands☆31Updated 6 years ago
- drvtriks kernel driver for Windows 7 SP1 and 8.1 x64, that tricks around in your system.☆31Updated 7 years ago
- ☆27Updated 6 years ago