Ahora57 / VMP_UTILLinks
PoC over some VMP features
☆23Updated last month
Alternatives and similar repositories for VMP_UTIL
Users that are interested in VMP_UTIL are comparing it to the libraries listed below
Sorting:
- Kernel ReClassEx☆64Updated last year
- ☆32Updated 3 years ago
- A simple ida python script to find .data ptr☆51Updated 2 years ago
- Detect suspend you process☆12Updated 2 years ago
- just proof of concept. hooking MmCopyMemory PG safe.☆77Updated last year
- Example driver on how to use SKLib☆54Updated 9 months ago
- Freeze target threads (external - internal ) by avoiding SuspendThread detections. Or access registers from start address.☆33Updated last year
- Library to manipulate drivers that expose a physical memory read/write primitive.☆30Updated last year
- PointerGuard is a proof-of-concept tool used to create 'guarded' pointers which disguise pointer addresses, monitor reads/writes, and pre…☆52Updated 3 years ago
- ☆55Updated 2 years ago
- ☆73Updated 2 years ago
- Improved VMP Idea(detect anti-anti-debug tools by bug)☆46Updated 2 years ago
- Handling C++ & __try exceptions without the need of built-in handlers.☆71Updated 3 years ago
- A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe☆72Updated 2 years ago
- Modmap updated to work on Windows 11☆28Updated 4 years ago
- Windows PDB parser for kernel-mode environment.☆100Updated 2 months ago
- ☆18Updated 10 months ago
- This is an EfiGuard BootLoader that can boot EfiGuard from Usermode with no USB or Setup as a Single Executable with automatic File Dumpi…☆59Updated 11 months ago
- ☆78Updated last year
- A Windows Direct Syscall Library☆47Updated 4 months ago
- Expanding Kernel Lazy Importer☆32Updated 2 years ago
- ☆26Updated 9 months ago
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆98Updated 2 years ago
- A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)☆82Updated last year
- Allows for same-file KernelMode function execution using Encrypted addresses of Functions☆43Updated 10 months ago
- ☆32Updated 11 months ago
- Windows x64 DLL/Driver manual map injection on a non-present PML4E using physical memory read/writes, direct page table manipulation and …☆32Updated 3 weeks ago
- A devirtualization engine for Themida.☆100Updated last year
- A library to assist with memory & code protection.☆61Updated last year
- A lightweight BattlEye emulator of the launcher☆61Updated 3 years ago