Alternatives and similar repositories for exploit-RemoteDesktopServerDriver

Users that are interested in exploit-RemoteDesktopServerDriver are comparing it to the libraries listed below

• iammaguire / Salient-Rootkit
  A kernel mode Windows rootkit in development.
  ☆48Updated 3 years ago
• polakow / WindowsBypassSMEP
  Example for PagedOut!
  ☆24Updated 5 years ago
• wolk-1024 / CrossInject
  x86/x64 dll injector
  ☆30Updated 2 years ago
• AzAgarampur / byeintegrity3-uac
  Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler
  ☆28Updated 3 years ago
• rtyuiow / vmware-backdoor
  vmware-backdoor
  ☆33Updated 3 years ago
• 0xhido / BlueLight
  Open-source EDR kernel-component for system monitoring and DLL injection
  ☆31Updated 4 years ago
• DownWithUp / DynamicKernelShellcode
  An example of how x64 kernel shellcode can dynamically find and use APIs
  ☆106Updated 5 years ago
• alfarom256 / UserVAtoPhysical
  Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address
  ☆24Updated 3 years ago
• SLAUC91 / DLLFinder
  Enumerate the DLLs/Modules using NtQueryVirtualMemory
  ☆31Updated 9 years ago
• n4r1b / WdFilter-Research
  Data and structures regarding the research done on WdFilter
  ☆12Updated 5 years ago
• SamLarenN / PSC-Engine
  Polymorphic Stub Creator
  ☆33Updated 7 years ago
• 0xcpu / exthost
  A POC for Windows Extension Host hooking
  ☆22Updated 5 years ago
• yardenshafir / MitigationFlagsCliTool
  Command like tool to print mitigation flags for running processes in a memory dump
  ☆46Updated 4 years ago
• XShar / Super_Hide_String
  Скрытие строки от отладчиков и декомпиляторов
  ☆50Updated 5 years ago
• tsarpaul / WinRpcTutorial
  A working version of this tutorial: https://docs.microsoft.com/en-us/windows/desktop/rpc/tutorial
  ☆16Updated 5 years ago
• dro / uac-launchinf-poc
  Windows 10 UAC bypass PoC using LaunchInfSection
  ☆34Updated 6 years ago
• DimopoulosElias / Primitives
  ☆31Updated 4 years ago
• Nerlant / SyscallDumper
  ☆19Updated 5 years ago
• k0keoyo / ntoskrnl-symbol-pdb-and-undocument-structures
  ntoskrnl symbol pdb and undocument structures
  ☆24Updated 7 years ago
• aaaddress1 / wow64Jit
  Call 32bit NtDLL API directly from WoW64 Layer
  ☆60Updated 4 years ago
• Jb05s / Exploit-Dev-C
  ☆22Updated 4 years ago
• waleedassar / SyscallNumberFinder
  ☆33Updated 3 years ago
• zhuhuibeishadiao / DriverMaper
  map driver to memory
  ☆25Updated 6 years ago
• whitephone / Windows-Rootkits
  ☆26Updated 7 years ago
• cxxrev0to1dev / nb_obfuscator
  win32/x64 obfuscate framework
  ☆32Updated 6 years ago
• zwclose / veeamon
  ☆16Updated 5 years ago
• DoubleLabyrinth / ProcessHollowing
  ☆36Updated 6 years ago
• 0vercl0k / inject
  Yet another Windows DLL injector.
  ☆39Updated 3 years ago
• NtRaiseHardError / UnRunPE
  PoC for detecting and dumping process hollowing code injection
  ☆51Updated 6 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 7 years ago