Repository navigation

#

patchguard

Mattiwatti/EfiGuard
Mattiwatti / EfiGuard 

Disable PatchGuard and Driver Signature Enforcement at boot time

patchguardefiUEFIbootkitdriverKernelsigningWindows
C++
1975
2 个月前
can1357 / ByePg 

Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.

patchguardExploitWindowsKernel
C++
867
5 年前
hfiref0x / UPGDSED 

Universal PatchGuard and Driver Signature Enforcement Disable

patchguardkppdseabandonwareC
C
840
6 年前
FiYHer / InfinityHookPro 

InfinityHookPro Win7 -> Win11 latest

hookpatchguardrootkitKerneldriverwin8win10win11
C++
517
2 年前
KiFilterFiberContext / warbird-hook 

Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard

microsoft-warbirdpatchguard
C++
245
3 年前
kkent030315 / NoPatchGuardCallback 

x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code

WindowsKernelpatchguardkpp
C
202
4 年前
DErDYAST1R / NmiCallbackBlocker 

Kernel Level NMI Callback Blocker

blockerbypasscallbackdriverExploithvcintoskrnlpatchguardProjectundetectedWindows
C++
79
8 个月前
zhutingxf / InfinityHookPro 

InfinityHook 支持Win7 到 Win11 最新版本,虚拟机环境及物理机环境

hookpatchguard
C++
56
6 个月前
4l3x777 / dse_pg_bypass 

DSE & PG bypass via BYOVD attack

byovddsepatchguardpoc逆向工程
C++
50
1 年前
i32-Sudo / VulnerablePatchGuardExploit 

A Vulnerable PatchGuard Exploit that can be used to disable PatchGuard on Runtime.

battleyebypassExploitpatchguardpgundetectedworking
C++
15
10 个月前
gmh5225 / QuickPGTrigger 

The stress testing of your PG bypass [old school project]

pgpatchguard
C++
10
3 年前
DErDYAST1R / eprocess-dkom-unlinking 

EPROCESS Unlinking example in "C" using DKOM Manipulation

elinkntoskrnlpatchguardprocessundetected
C++
8
8 个月前
PspExitThread / Kernel-Tools 

Anti-Rootkit

arkanti-rootkit工具debuggerdriverdriversKernelWindowsdsehvcipatchguard
7
1 个月前
ByteWhite1x1 / EDR-bypass-disable-PspNotifyEnableMask 

A single byte modification in the kernel memory bypasses and disables all core functions of the AV/EDR security solutions

bypasspatchguard
C
6
2 年前
DErDYAST1R / PsLoadedModuleList-Dkom-Unlinking 

PsLoadedModuleList Unlinking through DKOM Manipulation

listmodulentoskrnlpatchguardprocessundetected
4
10 个月前
sondernextdoor / Kairos 

Kairos is a next-generation, red-team-oriented Windows kernel defense neutralization framework. It combines traditional runtime patching with UEFI persistence, hypervisor-level surveillance, and Secure Kernel deception.

bypassguardinternalsKernelkpppatchpatchguardprotectionWindows
C
1
2 天前