Alternatives and similar repositories for ramiel:

Users that are interested in ramiel are comparing it to the libraries listed below

• zer0condition / Demystifying-PatchGuard
  Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…
  ☆116Updated last year
• gabriellandau / ShadowStackWalk
  Finding Truth in the Shadows
  ☆88Updated 2 years ago
• zer0condition / ZeroThreadKernel
  Recursive and arbitrary code execution at kernel-level without a system thread creation
  ☆154Updated last year
• connormcgarr / EATGuard
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆97Updated last year
• rbmm / NtDetours
  Detours implementation (x64/x86) which used only ntdll import
  ☆90Updated 9 months ago
• Azvanzed / CVE-2024-44083
  Makes IDA (most versions) to crash upon opening it.
  ☆80Updated 6 months ago
• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆128Updated 6 months ago
• Internet-2-0 / Malcore-x64dbg
  This x64dbg plugin allows you to upload your sample to Malcore and view the results.
  ☆33Updated last year
• idkhidden / WinApiPatcher
  WinApi Patcher is a straightforward tool leveraging windows API hooking to patch and modify certain behaviors in a targeted environment.
  ☆41Updated 5 months ago
• KiFilterFiberContext / warbird-obfuscator
  Integration of Microsoft Warbird with the MSVC compiler
  ☆95Updated last year
• carlos-al / user-kernel-syscall-hook
  ☆82Updated 9 months ago
• kkent030315 / Van1338
  A journal for $6,000 Riot Vanguard bounty.
  ☆62Updated last year
• zer0condition / ZeroHVCI
  Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…
  ☆192Updated 4 months ago
• tandasat / CVE-2024-21305
  Report and exploit of CVE-2024-21305.
  ☆34Updated last year
• namazso / dll-universal-patcher
  A universal binary patching dll.
  ☆84Updated 5 months ago
• ergrelet / themida-spotter-bn
  A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.
  ☆75Updated 7 months ago
• x0reaxeax / rwlazer64
  Win64 UEFI Driver-based tool for unrestricted memory R/W
  ☆27Updated 3 years ago
• li4321 / GhostInjector
  ☆44Updated last month
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆244Updated 2 years ago
• crvvdev / vac-bypass-kernel
  Fully working kernel-mode VAC bypass
  ☆59Updated 2 weeks ago
• Nordgaren / stealth-win
  ☆45Updated last year
• FunnyWhaleDev / AlterLoadDll
  Load dll with undocumented functions and debug symbols
  ☆47Updated 7 months ago
• hasherezade / pe_unmapper
  Small tool to convert beteween the PE alignments (raw and virtual).
  ☆85Updated 2 years ago
• kkent030315 / MsIoExploit
  Exploit MsIo vulnerable driver
  ☆93Updated 3 years ago
• sh4m2hwz / devirt_vmp
  devirtualization vmprotect
  ☆62Updated 2 years ago
• 4l3x777 / dse_pg_bypass
  DSE & PG bypass via BYOVD attack
  ☆43Updated 11 months ago
• cristeigabriel / re-sysinternals-suite
  Code from process of reversing Sysinternals Suite for educational purposes, with videos to associate them
  ☆48Updated last year