Alternatives and similar repositories for ramiel:

Users that are interested in ramiel are comparing it to the libraries listed below

• zer0condition / Demystifying-PatchGuard
  Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…
  ☆117Updated last year
• tandasat / CVE-2024-21305
  Report and exploit of CVE-2024-21305.
  ☆35Updated last year
• connormcgarr / EATGuard
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆97Updated last year
• D4stiny / ExceptionOrientedProgramming
  Abusing exceptions for code execution.
  ☆109Updated 2 years ago
• carlos-al / user-kernel-syscall-hook
  ☆82Updated 9 months ago
• KiFilterFiberContext / warbird-obfuscator
  Integration of Microsoft Warbird with the MSVC compiler
  ☆97Updated last year
• jonaslyk / temp
  ☆70Updated 2 years ago
• kkent030315 / Van1338
  A journal for $6,000 Riot Vanguard bounty.
  ☆62Updated last year
• dmaivel / ntoseye
  Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
  ☆70Updated 4 months ago
• zer0condition / ZeroThreadKernel
  Recursive and arbitrary code execution at kernel-level without a system thread creation
  ☆154Updated last year
• Azvanzed / CVE-2024-44083
  Makes IDA (most versions) to crash upon opening it.
  ☆82Updated 6 months ago
• cursey / x64-virtualizer-rs
  x86-64 virtualizing obfuscator written in Rust
  ☆74Updated last year
• Nordgaren / stealth-win
  ☆45Updated last year
• gabriellandau / ShadowStackWalk
  Finding Truth in the Shadows
  ☆89Updated 2 years ago
• synctop / tpm-mmio
  Using MMIO (Memory-Mapped I/O) to read TPM 2.0 public Endorsement Key.
  ☆42Updated 9 months ago
• ergrelet / themida-spotter-bn
  A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.
  ☆76Updated 7 months ago
• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆131Updated 6 months ago
• irql / CVE-2021-31728
  vulnerability in zam64.sys, zam32.sys allowing ring 0 code execution. CVE-2021-31727 and CVE-2021-31728 public reference.
  ☆91Updated 3 years ago
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆141Updated 2 years ago
• SamuelTulach / SecureGame
  Proof-of-concept game using VBS enclaves to protect itself from cheating
  ☆39Updated 4 months ago
• li4321 / GhostInjector
  ☆44Updated last month
• rbmm / NtDetours
  Detours implementation (x64/x86) which used only ntdll import
  ☆90Updated 9 months ago
• tandasat / CVE-2023-36427
  Report and exploit of CVE-2023-36427
  ☆91Updated last year
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆72Updated 3 years ago