AdamOron/PatchGuardBypass AdamOron/PatchGuardBypass

  • Stars
    star
    208
  • Rank 181,831 (Top 4 %)
  • Language
    C++
  • Created about 1 year ago
  • Updated about 1 year ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
AdamOron/PatchGuardBypass
github

AdamOron

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Bypassing PatchGuard on modern x64 systems

PatchGuardBypass

I've had the delightful opportunity to research PatchGuard for the past couple of weeks, and it was mostly pretty fun.

I'll be writing a paper about my experience and my findings, hopefully it could help anyone else who's hesitant to do something like this :)

In the meantime, I'll also be writing a dynamic PatchGuard bypass for modern Windows 10 systems. This is still a bit far from done, so please don't expect anything to work at this stage. Hopefully when it is finished it'll include 3 main features:

Disable

Disables PatchGuard completely and prevents its execution.

Evade

Evades PatchGuard detection by reverting patches prior to the PG check times.

Verify

Checks if PatchGuard has been disabled on the system. Basically the opposite of Disabling.

DISCLAMER: The feature names are work-in-progress, my sincerest apologies for the poor choice <3

More Repositories

1

Trampy

Trampoline-based Hooking Library
C++
6
star
2

Botnet-P2P

Decentralized Peer-to-Peer Botnet
C++
3
star
3

MinesweeperInternal

C++
2
star
4

CSGOInternal

C++
2
star
5

DLLInjector

Basic LoadLibrary DLL injector
C++
1
star
6

RFLCT

Extremely convenient C++ Reflection Library
C++
1
star
7

LightweightCompiler

Compiler written in C++ for an invented language. Compiles to Assembly code.
C++
1
star