Alternatives and similar repositories for ramiel:

Users that are interested in ramiel are comparing it to the libraries listed below

• connormcgarr / EATGuard
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆96Updated last year
• kkent030315 / Van1338
  A journal for $6,000 Riot Vanguard bounty.
  ☆61Updated last year
• rbmm / NtDetours
  Detours implementation (x64/x86) which used only ntdll import
  ☆90Updated 8 months ago
• D4stiny / ExceptionOrientedProgramming
  Abusing exceptions for code execution.
  ☆109Updated 2 years ago
• gabriellandau / ShadowStackWalk
  Finding Truth in the Shadows
  ☆88Updated 2 years ago
• jonaslyk / temp
  ☆70Updated last year
• zer0condition / ZeroThreadKernel
  Recursive and arbitrary code execution at kernel-level without a system thread creation
  ☆154Updated last year
• zer0condition / Demystifying-PatchGuard
  Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…
  ☆114Updated last year
• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆125Updated 5 months ago
• carlos-al / user-kernel-syscall-hook
  ☆81Updated 8 months ago
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆135Updated 2 years ago
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆243Updated 2 years ago
• cursey / x64-virtualizer-rs
  x86-64 virtualizing obfuscator written in Rust
  ☆71Updated last year
• CaledoniaProject / drivers-binaries
  Exploitable drivers, you know what I mean
  ☆130Updated 10 months ago
• tandasat / CVE-2024-21305
  Report and exploit of CVE-2024-21305.
  ☆34Updated last year
• floesen / KExecDD
  Admin to Kernel code execution using the KSecDD driver
  ☆242Updated 9 months ago
• therealdreg / masm32-kernel-programming
  masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)
  ☆118Updated last year
• KiFilterFiberContext / warbird-obfuscator
  Integration of Microsoft Warbird with the MSVC compiler
  ☆93Updated last year
• kkent030315 / MsIoExploit
  Exploit MsIo vulnerable driver
  ☆92Updated 3 years ago
• zer0condition / ZeroHVCI
  Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…
  ☆187Updated 3 months ago
• namazso / dll-universal-patcher
  A universal binary patching dll.
  ☆84Updated 4 months ago
• li4321 / GhostInjector
  ☆41Updated 2 weeks ago
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆79Updated last year
• FunnyWhaleDev / AlterLoadDll
  Load dll with undocumented functions and debug symbols
  ☆46Updated 6 months ago
• p0dalirius / pyPDBdownload
  A Python script to download PDB files associated with a Portable Executable (PE)
  ☆118Updated this week
• irql / CVE-2021-31728
  vulnerability in zam64.sys, zam32.sys allowing ring 0 code execution. CVE-2021-31727 and CVE-2021-31728 public reference.
  ☆90Updated 3 years ago
• 1hAck-0 / zeroimport
  ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel drive…
  ☆48Updated last year
• jonomango / chum
  Binary rewriter for 64-bit PE files.
  ☆67Updated last year