KDMapper is a simple tool that exploits iqvw64e.sys Intel driver to manually map non-signed drivers in memory

DLL Injector using manual map, written in C++

Windows driver mapper via the UEFI

proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC

Manual mapper that uses PTE manipulation, Virtual Address Descriptor (VAD) manipulation, and forceful memory allocation to hide executable pages. (VAD hide / NX bit swapping)

xigmapper is a driver manual mapper that loads your driver before Vanguard, but after critical system infrastructure has been set up, allowing you to write your bypass without worrying about the in…

I've developed a rather effective driver for DLL injection targeting EAC Protected Games, and since i dont care for any notable games utilizing that particular anti-cheat system, I've opted to shar…

Windows Kernel inject (no module no thread)

Global DLL injector

Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module

Kernel LdrLoadDll injector

💉 DLL/Shellcode injection techniques

manually map driver for a signed driver memory space

Loads a signed kernel driver which allows you to map any driver to kernel mode without any traces of the signed / mapped driver.

update face injector by KANKOSHEV

Modified version of face injector v2, added some things and alternative injection method. TAGS: fortnite cheat, fortnite injector

Kernel mode to user mode dll injection

Manual mapping without creating any threads, with rw only access

Kernel mode to user mode injector

Some DLL Injection techniques in C++ implemented for both x86 and x64 windows OS processes

Proof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijack execution flow with very detailed explanation.

DLL Hollowing PoC - Remote and Self shellcode injection

A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.

usermode driver mapper that forcefully loads any signed kernel driver (legit cert) with a big enough section (example: .data, .rdata) to map your driver over. the main focus of this project is to p…

SuperDllHijack：A general DLL hijack technology, don't need to manually export the same function interface of the DLL, so easy! 一种通用Dll劫持技术，不再需要手工导出Dll的函数接口了

KittyLoader is a highly evasive loader written in C / Assembly