PoC of BOOST-ed _EPROCESS.VadRoot iterating
☆27May 21, 2014Updated 11 years ago
Alternatives and similar repositories for VadScanner
Users that are interested in VadScanner are comparing it to the libraries listed below
Sorting:
- ☆12Feb 19, 2017Updated 9 years ago
- Detects if a Kernel mode debugger is active by reading the value of KUSER_SHARED_DATA.KdDebuggerEnabled. It is a high level and portable …☆23Sep 18, 2017Updated 8 years ago
- Lists work items being queued currently.☆14Jun 7, 2015Updated 10 years ago
- ☆17Mar 3, 2016Updated 10 years ago
- ☆36Oct 29, 2020Updated 5 years ago
- Intel-Process communitation☆10Feb 27, 2017Updated 9 years ago
- Hyper-V virtual switch packet capturing extension with libpcap / Wireshark format☆13Jun 3, 2014Updated 11 years ago
- ☆17Oct 24, 2016Updated 9 years ago
- Windows Minifilter driver that redirects any I/O Request of mp3 files to a target file☆18Jul 7, 2015Updated 10 years ago
- AllMemPro☆46Jan 15, 2018Updated 8 years ago
- windows LPC library☆44Jun 7, 2013Updated 12 years ago
- ☆15Jun 12, 2015Updated 10 years ago
- Capstone disassembly/disassembler framework: Core (Arm, Arm64, M68K, Mips, PPC, Sparc, SystemZ, X86, X86_64, XCore) + bindings (Python, J…☆15May 18, 2019Updated 6 years ago
- Hook IDT vector 0xb2 to detect SCI in 64bit windows.☆34Aug 27, 2022Updated 3 years ago
- Remote execution tool☆14Jan 14, 2014Updated 12 years ago
- Try to transport the tcpip stack of ReactOS to Windows XP.☆17Feb 27, 2014Updated 12 years ago
- wow64 syscall filter☆13Nov 12, 2014Updated 11 years ago
- pass game protect☆12Apr 26, 2014Updated 11 years ago
- HAXM hypervisor client☆18Nov 30, 2018Updated 7 years ago
- Minifilter Driver☆15Feb 10, 2017Updated 9 years ago
- This is the first software system, which can detect a stealthy hypervisor and calculate several nested ones even under countermeasures.☆87Jun 16, 2015Updated 10 years ago
- Notes my learning steps about Windows-NT☆23May 18, 2017Updated 8 years ago
- Demos presented on Hackerfest 2015☆14Nov 9, 2015Updated 10 years ago
- Modify process handle permissions☆61Nov 30, 2016Updated 9 years ago
- Native Development Kit for Vista 64bit And Later, by me, Based on NDK Headers 1.0, by Alex Ionescu☆17Dec 6, 2015Updated 10 years ago
- 粗暴地枚举管理内核的WFP对象。 Manage kernel WFPs in a brutal way.☆27Jan 14, 2018Updated 8 years ago
- WoW64 -> x64☆18Oct 1, 2016Updated 9 years ago
- WIP - Play with Intel VM Extensions☆23Jun 12, 2017Updated 8 years ago
- ☆27Apr 4, 2019Updated 6 years ago
- NASM listing to shellcode converter☆14May 6, 2018Updated 7 years ago
- more at http://www.zer0mem.sk/?p=271☆12Jun 11, 2013Updated 12 years ago
- A future hobby OS kernel☆11Nov 8, 2020Updated 5 years ago
- The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers☆34Mar 13, 2017Updated 9 years ago
- Automatically exported from code.google.com/p/windbgshark☆12Nov 3, 2015Updated 10 years ago
- Internet Explorer Exploit with CFG bypass for Windows 10☆60Jan 11, 2017Updated 9 years ago
- Windows设备驱动开发 光盘(示例代码)☆10Jan 14, 2013Updated 13 years ago
- Shareds for kernel developement☆29Dec 23, 2013Updated 12 years ago
- Anti-AV compilation☆44Oct 4, 2013Updated 12 years ago
- Open Anti Cheat☆27Jul 16, 2022Updated 3 years ago