The windows kernel ssdt hook demo
☆16Nov 5, 2018Updated 7 years ago
Alternatives and similar repositories for SSDT-Hook
Users that are interested in SSDT-Hook are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- An SSDT hook for Windows☆62Oct 27, 2017Updated 8 years ago
- ssdt hook 框架的简单实现☆14Jun 9, 2016Updated 9 years ago
- Malware analysis tool based on taint analysis.☆14Jan 29, 2022Updated 4 years ago
- A minifilter driver for detecting and blocking ransomware virus☆27Mar 4, 2018Updated 8 years ago
- Dumping ground for whatever IDA Pro scripts I write☆16Oct 9, 2016Updated 9 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Kernel Shellcode to add all privileges in token☆15Mar 13, 2017Updated 9 years ago
- Simple x64 DLL injector☆15May 30, 2014Updated 11 years ago
- Windows kernel-mode callbacks tutorial driver☆48Aug 8, 2016Updated 9 years ago
- My manual analysis of malware families☆13Jul 12, 2017Updated 8 years ago
- WinDbg plugin to trace module transitions from a debugged driver.☆50Dec 22, 2025Updated 3 months ago
- Simple tool for unpacking packed/protected malware executables.☆32Oct 27, 2011Updated 14 years ago
- Plugins for Scylla☆20Sep 14, 2011Updated 14 years ago
- Automatically exported from code.google.com/p/hf-2011☆15Feb 12, 2016Updated 10 years ago
- ☆10Mar 30, 2016Updated 10 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- What makes it page☆17Aug 24, 2022Updated 3 years ago
- ☆72Jan 27, 2014Updated 12 years ago
- Final Transparent encrypted version☆14Jan 10, 2017Updated 9 years ago
- ida提取特征码脚本☆56Nov 30, 2019Updated 6 years ago
- Anti-AV compilation☆44Oct 4, 2013Updated 12 years ago
- ☆36Mar 22, 2017Updated 9 years ago
- WinDbg debugger extension library providing various tools to analyse, dump and fix (restore) Microsoft Portable Executable files for both…☆84Aug 24, 2024Updated last year
- Archive from the article CVE-2015-5119 Flash ByteArray UaF: A beginner's walkthrough☆13Sep 10, 2015Updated 10 years ago
- Sysark全称system anti-rootkit,是我学习内核写的工具(2013年的代码,后续不会再更新),里面基本上所有的功能都是用内核实现的。这里只是��实现了反rootkit部分功能,作为工具的话,本人觉得还欠完善,但作为学习,或有人需要。目前针对的是XP SP2,…☆27Dec 26, 2017Updated 8 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- CSharp Writeups for HackSys Extreme Vulnerable Driver☆45Dec 22, 2021Updated 4 years ago
- Bring Your Own Vulnerable Driver for PatchGuard & Driver Signature Enforcement☆15Apr 6, 2024Updated last year
- Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.☆22Sep 4, 2023Updated 2 years ago
- Inject shellcode into extra file alignment padding of a PE and change the entry point to point to the shellcode. On execution, the shellc…☆22Oct 29, 2012Updated 13 years ago
- ☆21Feb 19, 2021Updated 5 years ago
- x64dbg scripts for finding OEP of packers☆15Oct 22, 2018Updated 7 years ago
- RWX Section Abusing☆16Nov 19, 2023Updated 2 years ago
- Fast image comparison and diffing in C++ (with a C# binding)☆10Apr 19, 2016Updated 9 years ago
- How to write basic memory corruption exploits on Windows☆28Sep 14, 2016Updated 9 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- ☆12Sep 3, 2022Updated 3 years ago
- win7 apc注入不支持win10☆18Mar 29, 2019Updated 7 years ago
- hook system call that on user mode☆12Jan 27, 2022Updated 4 years ago
- [2007] Windows tool, offers the ability to dynamically and transparently modify incoming and outgoing network traffic, as well as to redi…☆12Nov 27, 2017Updated 8 years ago
- Kernel-mode file scanner☆19Jul 16, 2018Updated 7 years ago
- Emofishes is a collection of proof-of-concepts that help improve, bypass or detect virtualized execution environments (focusing on the on…☆15Jan 28, 2023Updated 3 years ago
- Uses WMI Event Win32_ModuleLoadTrace to monitor module loading. Provides filters, and detailed data. Has an option to monitor for CLR Inj…☆42May 9, 2019Updated 6 years ago