Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/btbd/access

Access without a real handle
https://github.com/btbd/access

Last synced: about 2 months ago
JSON representation

Access without a real handle

Host: GitHub
URL: https://github.com/btbd/access
Owner: btbd
Created: 2019-10-31T02:16:43.000Z (almost 5 years ago)
Default Branch: noseh
Last Pushed: 2021-04-10T01:18:45.000Z (over 3 years ago)
Last Synced: 2024-06-12T02:31:08.033Z (3 months ago)
Language: C
Size: 7.61 MB
Stars: 832
Watchers: 20
Forks: 226
Open Issues: 12
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

# access - noseh

A simple syscall wrapper that requires no handles to perform operations with `PROCESS_ALL_ACCESS` privilege.

This branch is the modified version that uses no SEH, but still does safe operations (results in slower execution). This branch also utilizes a different syscall hook for communication via a `.data` section modification in the kernel.

## Usage

1. Load the driver.
2. Load the DLL (wrapper) into a program that needs to open a handle to a protected process.
3. The program can now perform privileged operations without creating a real handle.

## Demo

![Demo with Fortnite and Cheat Engine](demo.gif)

## Note

- The wrapper is designed to be loaded in a x64 process and only implements the syscalls that pertain to my workflow.
- Only tested on Windows 10 1903, 1809, and 1803.