This is a simple project of a driver + usermode.

Simple Kernelmode DLL Injector with Manual mapping

EDK II

WinSpoof is a proof-of-concept (PoC) demonstrating return address spoofing when calling Windows API functions. It utilizes dynamically generated shellcode to manipulate return addresses and execute…

A Kernel Driver that can be used for a cheat or malware base to circumvent common cache & structure table checks. PsLoadedModuleList however requires a PG Bypass on (Some) Machines > 22H2 Win10, No…

Simple external esp using discord's/gdi overlay to render a box-esp on top of Counter-Strike 2, highlighting your enemies and teammates including their health.

"Screwed Drivers" centralized information source for code references, links, etc.

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

A project for allowing EDK-II Development with Visual Studio

This is a Anti-Cheat bypass written in c++ by Apxaey, and makes use of Microsoft's undocumented Native API. I tested this specifically on VAC, however it should bypass any other usermode anticheats…

This tool will allow you to spoof the return addresses of your functions as well as system functions.

💎 A utility for unhooking DLLs from remote processes, enabling debugging and modification of running applications. 💎

Using ioctl major function swaps to "spoof" the ARP table

Wiping the PE header of an executable thus "corrupting" it

📏 The Levenshtein Distance Algorithm to compute the minimum edits to transform one string into another 📏

A custom Firefox Selenium-based Webdriver. Passes all bot mitigation systems

Pure Malware Development Resource Collections

A complete 600 page book on modern Windows Kernel Driver development and all info about kernel.

These are C++ base for creating CS2 cheats with a DirectX 11 overlay.

Vmware Hardened VM detection mitigation loader (anti anti-vm)

Simple External DX11 Overlay using ImGui for rendering.

Unreal Engine SDK Generator

This uses kernel to manipulate the ARP table entries in order to evade anti-cheat measures. This has support for multiple entries and can easily be expanded on to be a lot better.

re-kit 2.0 is a reverse engineering toolkit made for fighting malware and analyzing programs.

A fast & light weight Discord Client made with love using the Rust programming language.

The most powerful Unreal Engine Dumper and Editor for UE 4.19 - 5.3

Polymorphic ELF Virus

🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc