btbd/access

Stars
831
Rank 54,605 (Top 2 %)
Language
C
Created almost 5 years ago
Updated over 3 years ago

btbd/access

btbd

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Access without a real handle

access - noseh

A simple syscall wrapper that requires no handles to perform operations with PROCESS_ALL_ACCESS privilege.

This branch is the modified version that uses no SEH, but still does safe operations (results in slower execution). This branch also utilizes a different syscall hook for communication via a .data section modification in the kernel.

Usage

Load the driver.
Load the DLL (wrapper) into a program that needs to open a handle to a protected process.
The program can now perform privileged operations without creating a real handle.

Demo

Note

The wrapper is designed to be loaded in a x64 process and only implements the syscalls that pertain to my workflow.
Only tested on Windows 10 1903, 1809, and 1803.

smap

DLL scatter manual mapper

hwid

umap

UEFI bootkit for driver manual mapping

modmap

Module extending manual mapper

wpp

Intercepting DeviceControl via WPP

mmultiplayer

Mirror's Edge Multiplayer Mod

ddma

disassembler

A basic x86 disassembler.

memla

A tool to allow config changes to Mirror's Edge.

mtas

Mirror's Edge TAS Tool

DOOM_Trainer

Trainer for DOOM 2016.

CEVerify

A tool to help verify CloudEvents.

slew

An interpreted language designed for WinAPI.

ImageHub

Alternative front-end for DockerHub

gitrepo

A small tool for creating org repos

e3d

A basic 3D engine for Windows

proxy

Nonblocking, autoscaling, self-contained K8s proxy

timeline

Simple timeline to log picture with messages

madlibs

CloudEvents demo for Kubecon NA 2019

airport-controller

CloudEvents demo for Kubecon EU 2019

btbd.github.io