zeroaceee / EDMapper
A documented Windows x64 bit Usermode Injector that works via hooking IAT and hijacking its threads to execute shellcode.
☆64Updated last year
Alternatives and similar repositories for EDMapper:
Users that are interested in EDMapper are comparing it to the libraries listed below
- Handling C++ & __try exceptions without the need of built-in handlers.☆69Updated 3 years ago
- x64 manual mapper using inline syscalls☆8Updated 3 years ago
- ☆78Updated 3 years ago
- Disable Driver Callbacks☆102Updated 7 years ago
- ☆52Updated 2 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆110Updated 3 years ago
- Virtual and physical memory hacking library using gigabyte vulnerable driver☆70Updated last year
- ☆50Updated 4 years ago
- ☆78Updated 2 years ago
- Kernel driver that uses Shared memory to communicate with UserMode☆85Updated 5 years ago
- ☆33Updated 2 years ago
- Prototype of hijacking Windows driver dispatch routines in unmapped discardable sections☆55Updated 5 years ago
- A simple tool to assemble shellcode ready to be copy-pasted into code☆68Updated 2 years ago
- ☆48Updated last year
- driver manual mapper☆28Updated 5 years ago
- mouseclassservicecallback detection via hook☆49Updated 3 years ago
- ☆41Updated 3 years ago
- ☆66Updated 2 years ago
- Mapping your code on a 0x1000 size page☆70Updated 2 years ago
- Discarded Section Manual Map☆66Updated 4 years ago
- based on https://github.com/secrary/Hooking-via-InstrumentationCallback☆69Updated 5 years ago
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆83Updated last year
- This project will give you an example how you can hook a kernel vtable function that cannot be directly called☆82Updated 3 years ago
- ☆151Updated 9 months ago
- Stealthy Injector that leverages a vulnerable driver and other exploits to remain undetected☆36Updated 6 years ago
- Windows Manipulation Library (x64, User/Kernelmode)☆75Updated 6 years ago
- reverse engineering of bedaisy.sys (battleyes kernel driver) - Aki2k/BEDaisy☆81Updated 4 years ago
- ☆51Updated last year
- x64 syscall caller in C++.☆87Updated 6 years ago
- PointerGuard is a proof-of-concept tool used to create 'guarded' pointers which disguise pointer addresses, monitor reads/writes, and pre…☆52Updated 2 years ago