Alternatives and similar repositories for SymbolicAccess

Users that are interested in SymbolicAccess are comparing it to the libraries listed below

• MapleSwan / PageTableHook
  ☆140Updated 2 years ago
• Oxygen1a1 / oxgenPdb
  a Windows kernel Pdb parsing and downloading library that running purely in kernel mode without any R3 programs.
  ☆162Updated 10 months ago
• Kwansy98 / EasyPdb
  A very simple C++ library for download pdb, get rva of function, global variable and offset from struct.
  ☆147Updated last year
• HOOK11 / GsDriver
  一个简单的驱动
  ☆63Updated last year
• qq1045551070 / ShotHv
  ShotHv
  ☆145Updated 3 years ago
• armasm / dwmhook
  noob hooking dwm for overlay
  ☆83Updated 4 years ago
• 1401199262 / MemoryVirtualization
  ☆170Updated 3 years ago
• Oxygen1a1 / DrvMon
  a monitoring windows driver calls kernel api tools
  ☆110Updated last year
• cs1ime / sehcall
  Windows X64 mode use seh in manual mapped dll or manual mapped sys
  ☆73Updated 2 years ago
• zouxianyu / query-pdb
  query-pdb is a server-side software for parsing PDB files. The software provides PDB online parsing service.
  ☆156Updated 10 months ago
• samshine / VoyagerWithEPT
  ☆49Updated 2 years ago
• ilovecsad / veh_hide_memory
  ☆70Updated 3 years ago
• 3499409631 / ReadPhysicalMemory-Without-API
  This project can bypass most of the AC except for some perverts that enable VT to monitor page tables
  ☆48Updated last year
• KelvinMsft / PerfMon
  first commit
  ☆63Updated 4 years ago
• xyddnljydd / vt-ReloadDbg
  ☆57Updated 2 years ago
• crtdll / bedaisy-reversal
  Some psuedo snippets from BattlEye's BEDaisy.sys loaded on Rainbow Six: Siege.
  ☆125Updated 3 years ago
• 2367765883 / hidedriver-normal
  ☆38Updated 10 months ago
• LYingSiMon / InfinityHookProEx
  This is an extension to InfinityHookPro to support physical machine environments. (Win7 -> Win11 latest)
  ☆35Updated 2 years ago
• MapleSwan / dwm-overlay
  ☆100Updated 3 years ago
• cs1ime / KernelDwm
  Kernel dwm render
  ☆158Updated last year
• wbaby / DoubleCallBack
  ☆173Updated 3 years ago
• cutecatsandvirtualmachines / DmaProtect
  Shows an example of how to implement VT-d/AMD-Vi on Windows
  ☆134Updated last year
• IcEy-999 / Ntoskrnl_Viewer
  可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。
  ☆111Updated 2 years ago
• KANKOSHEV / Detect-KeAttachProcess
  Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.
  ☆118Updated 3 years ago
• ThomasonZhao / InfinityHookProMax
  InfinityHookProMax: Make InfinityHook great great again
  ☆46Updated last year
• 1401199262 / NMIStackWalk
  ☆74Updated 2 years ago
• MiroKaku / DetoursX
  Kernel-Mode extended version of https://github.com/microsoft/Detours
  ☆173Updated 2 months ago
• zhutingxf / InfinityHookPro
  InfinityHook 支持Win7 到 Win11 最新版本，虚拟机环境及物理机环境
  ☆81Updated 9 months ago
• haidragon / DriverInjectDll
  InjectDll
  ☆56Updated 6 years ago
• 1401199262 / Hook-KdTrap
  ☆213Updated 2 years ago