0ffffffffh / system_call_hook_win10_1903

This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness

This hooking technique have described in the following blog post

https://www.oguzkartal.net/blog/index.php/2019/08/26/intercepting-the-windows-10-system-service-call-using-the-weakness-caused-by-the-dynamic-trace-support/

About

This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness

Languages

Language:C 90.8%Language:Assembly 9.2%