BeneficialCode / WinArk

Related projects ⓘ

Alternatives and complementary repositories for WinArk

• FiYHer / InfinityHookPro
  InfinityHookPro Win7 -> Win11 latest
  ☆494Updated last year
• iPower / KasperskyHook
  Hook system calls on Windows by using Kaspersky's hypervisor
  ☆1,110Updated 7 months ago
• anzelesnik / SyscallHook
  System call hook for Windows 10 20H1
  ☆478Updated 3 years ago
• strivexjun / DriverInjectDll
  Using Driver Global Injection dll, it can hide DLL modules
  ☆505Updated 5 years ago
• crvvdev / MasterHide
  A x64 Windows Rootkit using SSDT or Hypervisor hook
  ☆509Updated last week
• 9176324 / Shark
  Turn off PatchGuard in real time for win7 (7600) ~ later
  ☆985Updated 2 years ago
• stonedreamforest / Mirage
  kernel-mode Anti-Anti-Debug plugin. based on intel vt-x && ept technology
  ☆428Updated 4 years ago
• bb107 / MemoryModulePP
  MemoryModule which compatible with Win32 API and support exception handling
  ☆357Updated this week
• MiroKaku / Musa.Veil
  Collection of undocumented Windows API declarations.
  ☆290Updated 2 weeks ago
• DragonQuestHero / Kernel-Anit-Anit-Debug-Plugins
  Kernel Anit Anit Debug Plugins 内核反反调试插件
  ☆447Updated 3 years ago
• DragonQuestHero / Medusa
  Radical Windows ARK
  ☆206Updated this week
• hzqst / unicorn_pe
  Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.
  ☆787Updated 6 months ago
• Oxygen1a1 / InfinityHook_latest
  etw hook (syscall/infinity hook) compatible with the latest Windows version of PG
  ☆209Updated 6 months ago
• strivexjun / XAntiDebug
  VMProtect 3.x Anti-debug Method Improved
  ☆517Updated 5 years ago
• ryan-weil / HideProcessHook
  DLL that hooks the NtQuerySystemInformation API and hides a process name
  ☆280Updated last year
• IcEy-999 / Drv_Hide_And_Camouflage
  ☆251Updated last year
• MiroKaku / ucxxrt
  The Universal C++ RunTime library, supporting kernel-mode C++ exception-handler and STL.
  ☆398Updated 3 months ago
• 4d61726b / VirtualKD-Redux
  VirtualKD-Redux - A revival and modernization of VirtualKD
  ☆820Updated 4 months ago
• can1357 / ByePg
  Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.
  ☆843Updated 4 years ago
• colby57 / VMP-Imports-Deobfuscator
  VMProtect 2.x-3.x x64 Import Deobfuscator
  ☆259Updated 10 months ago
• changeofpace / Self-Remapping-Code
  This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemo…
  ☆562Updated 5 years ago
• MiroKaku / libwsk
  The Kernel-Mode Winsock library, supporting TCP, UDP and Unix sockets (DGRAM and STREAM).
  ☆232Updated 7 months ago
• YuriSizuku / win-MemoryModule
  A flexible PE loader, loading module in memory. Most of the functions can be inline, compatible for shellcode.
  ☆170Updated 3 weeks ago
• Jemmy1228 / HookSigntool
  ☆450Updated 4 years ago
• VenTaz / Themidie
  x64dbg plugin to bypass Themida 3.x Anti-Debugger / VM / Monitoring programs checks (x64)
  ☆478Updated 3 years ago
• Air14 / HyperHide
  Hypervisor based anti anti debug plugin for x64dbg
  ☆1,272Updated 4 months ago
• tishion / mmLoader
  A library for loading dll module bypassing windows PE loader from memory (x86/x64)
  ☆535Updated 7 months ago
• zxd1994 / vt-debuuger
  a debugger use vt technology
  ☆261Updated 2 years ago
• horsicq / stringsx64dbg
  Strings plugin for x64dbg
  ☆226Updated this week
• JustasMasiulis / inline_syscall
  Inline syscalls made easy for windows on clang
  ☆669Updated 4 months ago