brew02

Implemented a proof-of-concept for using the supervisor-mode execution prevention and supervisor-mode access prevention features to create stealthy, inline hooks similar to extended page table hooks. The accompanying write-up for this proof-of-concept can be found here.

Implemented a minimalistic hook on the early user-mode Windows exception handler using reverse-engineered information. The code can be found here.

Designed a work-in-progress framework to create fast and portable hooks on arbitrary functions by utilizing the Windows exception handler and binary instrumentation. The code can be found here.