zodiacon / KObjectsLinks
Sample for Creating a new kernel object type and supporting API
☆26Updated last year
Alternatives and similar repositories for KObjects
Users that are interested in KObjects are comparing it to the libraries listed below
Sorting:
- SetWinEventHook Sample☆49Updated 2 years ago
- Example of building an application verifer DLL☆49Updated last year
- Bypassing kernel patch protection runtime☆20Updated 2 years ago
- Debug Print viewer (user and kernel)☆67Updated last year
- An x64dbg plugin which helps make sense of long C++ symbols☆57Updated 2 years ago
- Remote Thread Detection with a Kernel Driver☆32Updated 9 months ago
- Reimplement CreateProcessInternalW via Windows 10 20H1+/Windows 11 Base on NtCreateUserProcess-Post☆73Updated last year
- Hook all callbacks which are registered with LdrRegisterDllNotification☆90Updated 6 months ago
- Windows kernel driver template for cmkr and llvm-msvc.☆33Updated last year
- Windows driver template, using C++20 & cmake & GithubActions☆22Updated last year
- Elevate arbitrary MSR writes to kernel execution.☆38Updated 2 years ago
- research revolving the windows filtering platform callout mechanism☆35Updated last year
- Support Windows OS Reversing by searching easily for references to functions across many DLLs☆32Updated 3 years ago
- windows rootkit☆61Updated last year
- ☆39Updated 5 months ago
- An example of how to use Microsoft Windows Warbird technology☆28Updated 2 years ago
- Application Verifier Dynamic Fault Injection☆39Updated last month
- A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering☆41Updated 4 months ago
- ☆59Updated 3 years ago
- Easy encrypt/decrypt data with TPM☆25Updated last year
- View Windows System in action☆39Updated 2 months ago
- ☆26Updated 3 years ago
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆76Updated 2 years ago
- silence file system monitoring components by hooking their minifilters☆59Updated last year
- WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs☆18Updated 2 years ago
- An improved version of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆72Updated 6 months ago
- ☆25Updated 3 months ago
- Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1☆53Updated last month
- Signature scanner and API hooks to detect malicious process injection☆27Updated 2 years ago
- Proof-of-concept game using VBS enclaves to protect itself from cheating☆43Updated 11 months ago