zeroaceee / EDMapper
A documented Windows x64 bit Usermode Injector that works via hooking IAT and hijacking its threads to execute shellcode.
☆62Updated last year
Related projects: ⓘ
- Handling C++ & __try exceptions without the need of built-in handlers.☆63Updated 3 years ago
- Disable Driver Callbacks☆97Updated 6 years ago
- x64 manual mapper using inline syscalls☆6Updated 3 years ago
- ☆76Updated 3 years ago
- ☆53Updated this week
- reverse engineering of bedaisy.sys (battleyes kernel driver) - Aki2k/BEDaisy☆53Updated 4 years ago
- scans through physical memory and paging tables in kernel mode☆104Updated 3 years ago
- ☆46Updated last year
- ☆73Updated 2 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆108Updated 2 years ago
- driver manual mapper☆25Updated 4 years ago
- A proof of concept demonstrating communication via mapped shared memory structures between a user-mode process and a kernel-mode payload …☆73Updated 3 years ago
- Kernel driver that uses Shared memory to communicate with UserMode☆81Updated 5 years ago
- x64 syscall caller in C++.☆84Updated 6 years ago
- Windows Manipulation Library (x64, User/Kernelmode)☆74Updated 5 years ago
- mouseclassservicecallback detection via hook☆46Updated 2 years ago
- This project will give you an example how you can hook a kernel vtable function that cannot be directly called☆78Updated 2 years ago
- Prototype of hijacking Windows driver dispatch routines in unmapped discardable sections☆53Updated 5 years ago
- Communication via callback☆69Updated 4 years ago
- x64 Windows kernel driver mapper, inject unsigned driver using anycall☆103Updated 7 months ago
- BetaShield Windows x86 Ring3 Anticheat v2☆34Updated 7 years ago
- ☆59Updated this week
- ☆33Updated 2 years ago
- Code injection by hijacking threads in Windows 32-bit applications☆42Updated 5 years ago
- Anti-debug library based on al-khaser with ScyllaHide/TitanHide detection.☆57Updated 5 years ago
- A PoC for requesting HWIDs directly from hardware, skipping any potential hooks or OS support.☆77Updated 3 years ago
- ☆40Updated 2 years ago
- Class containing Anti-RE, Anti-Debug and Anti-Hook methods. Made for C++/CLI☆98Updated last year
- PE-Dump-Fixer☆100Updated 4 years ago
- ☆47Updated 5 years ago