BeneficialCode / KReClassExLinks
Kernel ReClassEx
☆64Updated last year
Alternatives and similar repositories for KReClassEx
Users that are interested in KReClassEx are comparing it to the libraries listed below
Sorting:
- Binary rewriter for 64-bit PE files.☆84Updated last year
- A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe☆72Updated 2 years ago
- Windows PDB parser for kernel-mode environment.☆99Updated 3 months ago
- ☆72Updated 3 years ago
- Runtime Hyper-V Hijacking with DDMA☆60Updated last month
- A simple ida python script to find .data ptr☆52Updated 2 years ago
- POC Hook of nt!HvcallCodeVa☆52Updated 2 years ago
- Improved VMP Idea(detect anti-anti-debug tools by bug)☆46Updated 2 years ago
- A devirtualization engine for Themida.☆101Updated last year
- unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…☆62Updated last year
- A debugger library using VEH.☆64Updated last year
- Cheat for my own game SecureGame which uses a bootkit to hyperjack Hyper-V in order to access VBS enclave's memory☆77Updated 9 months ago
- ☆32Updated last year
- Library to manipulate drivers that expose a physical memory read/write primitive.☆30Updated 2 years ago
- intel vt-x type 2 hypervisor☆57Updated 5 months ago
- Using MMIO (Memory-Mapped I/O) to read TPM 2.0 public Endorsement Key.☆49Updated last year
- Kernel driver for detecting Intel VT-x hypervisors.☆193Updated 2 years ago
- A library to assist with memory & code protection.☆64Updated last year
- Handling C++ & __try exceptions without the need of built-in handlers.☆72Updated 4 years ago
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆59Updated 11 months ago
- A small tool for rapid enumeration of CPUID, and MSR fields.☆25Updated last year
- Custom KiSystemStartup, can be used to modificate kernel before boot.☆52Updated 3 years ago
- 🪝 Various EPT hook detection approaches☆127Updated 2 months ago
- A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)☆88Updated 2 years ago
- Yet another IDA Pro/Home plugin for deobfuscating stack strings☆79Updated this week
- detect hypervisor with Nmi Callback☆40Updated 3 years ago
- A x86_64 software emulator☆149Updated last month
- just proof of concept. hooking MmCopyMemory PG safe.☆76Updated last year
- ☆35Updated 3 years ago
- driver that communicates using a shared section☆73Updated 6 months ago