This project is a proof-of-concept (POC) demonstrating a method of using supervisor-mode access prevention (SMAP) and supervisor-mode execution prevention (SMEP) to create inline hooks that are functionally similar to extended page table (EPT) hooks. The project also demonstrates a limited example of how software virtualization could be used in conjunction with this project to better hide the presence of such hooks. A more detailed write-up can be found here.
-
Notifications
You must be signed in to change notification settings - Fork 8
brew02/BudgetEPT
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
About
Create stealthy, inline, EPT-like hooks using SMAP and SMEP
Resources
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published