xmaple555
Follow
Starred repositories
My Open source cheat driver updated to work on latest EAC versions and draw less detections than the original.
reverse engineering of bedaisy.sys (battleyes kernel driver) - Aki2k/BEDaisy
Loads a signed kernel driver which allows you to map any driver to kernel mode without any traces of the signed / mapped driver.
C++ command line tool to get process and thread information with NtQuerySystemInformation (Windows)
Hypervisor-assisted internal League of Legends hack
Simple C++ DLL Manual Map Injector For x86 and x64
Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird + Spawns a sacrificial Process as target process + (ACG+Bloc…
Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation from scanners and analysts.
A x64dbg plugin for quickly locating key functions.
Reverse engineering tool for linux games
The DataExplorer plugin integrates the pattern language from ImHex into x64dbg.
A series of increasingly complex programs demonstrating function hooking on 64 bit Windows. Culminating in a program that hooks mspaint to make it always paint orange.
EasyHook - The reinvention of Windows API Hooking
VirtualBox VM detection mitigation loader
Process Creation, Image Load and Thread Creation Notification
A mapper that maps shellcode into loaded large page drivers
CEServer for Cheat Engine 7.4 to perform DMA access to Windows processes
Deobfuscation via optimization with usage of LLVM IR and parsing assembly.
Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.
This is the source regarding the tutorial I made on Removing your systemthread from PspCidTable https://github.com/Zerodayyz/Remove-your-systemthread-from-PspCidTable
Obfusheader.h is a portable header file for C++14 compile-time obfuscation.