PoC of BOOST-ed _EPROCESS.VadRoot iterating
☆27May 21, 2014Updated 11 years ago
Alternatives and similar repositories for VadScanner
Users that are interested in VadScanner are comparing it to the libraries listed below
Sorting:
- ☆12Feb 19, 2017Updated 9 years ago
- Lists work items being queued currently.☆14Jun 7, 2015Updated 10 years ago
- ☆17Mar 3, 2016Updated 9 years ago
- ☆36Oct 29, 2020Updated 5 years ago
- Hyper-V virtual switch packet capturing extension with libpcap / Wireshark format☆13Jun 3, 2014Updated 11 years ago
- Detects if a Kernel mode debugger is active by reading the value of KUSER_SHARED_DATA.KdDebuggerEnabled. It is a high level and portable …☆23Sep 18, 2017Updated 8 years ago
- windows LPC library☆43Jun 7, 2013Updated 12 years ago
- Intel-Process communitation☆10Feb 27, 2017Updated 9 years ago
- AllMemPro☆46Jan 15, 2018Updated 8 years ago
- ☆27Apr 4, 2019Updated 6 years ago
- Remote execution tool☆14Jan 14, 2014Updated 12 years ago
- Windows Minifilter driver that redirects any I/O Request of mp3 files to a target file☆18Jul 7, 2015Updated 10 years ago
- Native Development Kit for Vista 64bit And Later, by me, Based on NDK Headers 1.0, by Alex Ionescu☆17Dec 6, 2015Updated 10 years ago
- Modify process handle permissions☆61Nov 30, 2016Updated 9 years ago
- Capstone disassembly/disassembler framework: Core (Arm, Arm64, M68K, Mips, PPC, Sparc, SystemZ, X86, X86_64, XCore) + bindings (Python, J…☆15May 18, 2019Updated 6 years ago
- HAXM hypervisor client☆18Nov 30, 2018Updated 7 years ago
- Demos presented on Hackerfest 2015☆14Nov 9, 2015Updated 10 years ago
- pass game protect☆12Apr 26, 2014Updated 11 years ago
- Hook IDT vector 0xb2 to detect SCI in 64bit windows.☆34Aug 27, 2022Updated 3 years ago
- ☆17Oct 24, 2016Updated 9 years ago
- more at http://www.zer0mem.sk/?p=271☆12Jun 11, 2013Updated 12 years ago
- wow64 syscall filter☆13Nov 12, 2014Updated 11 years ago
- Minifilter Driver☆15Feb 10, 2017Updated 9 years ago
- nyā☆70Oct 16, 2015Updated 10 years ago
- Internet Explorer Exploit with CFG bypass for Windows 10☆59Jan 11, 2017Updated 9 years ago
- 粗暴地枚举管理内核的WFP对象。 Manage kernel WFPs in a brutal way.☆27Jan 14, 2018Updated 8 years ago
- This is the first software system, which can detect a stealthy hypervisor and calculate several nested ones even under countermeasures.☆87Jun 16, 2015Updated 10 years ago
- UI application that can compare PE images in memory or in raw PE file☆19Feb 17, 2014Updated 12 years ago
- WoW64 -> x64☆18Oct 1, 2016Updated 9 years ago
- ☆14Aug 15, 2018Updated 7 years ago
- Try to transport the tcpip stack of ReactOS to Windows XP.☆17Feb 27, 2014Updated 12 years ago
- An av windows engine with file guard and compress file enumator☆12Aug 25, 2018Updated 7 years ago
- windows net program☆13Oct 16, 2014Updated 11 years ago
- A remote desktop control suite☆16Jun 28, 2014Updated 11 years ago
- A debbuger based dbgeng for WIndows☆34Aug 23, 2017Updated 8 years ago
- Code injection via delay load libraries☆36Sep 20, 2017Updated 8 years ago
- Notes my learning steps about Windows-NT☆23May 18, 2017Updated 8 years ago
- Kernel debugger using Intel VT-x. Designed to be compatible with linux, ucore, windows.☆28Jun 12, 2013Updated 12 years ago
- WIP - Play with Intel VM Extensions☆23Jun 12, 2017Updated 8 years ago