BeneficialCode/WinArk external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

BeneficialCode/WinArk

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/BeneficialCode/WinArk)

Close

BeneficialCode / WinArkView on GitHubMore

• External links
• Readme badge

Windows Anti-Rootkit Tool

☆556Apr 21, 2026Updated last week

Alternatives and similar repositories for WinArk

Users that are interested in WinArk are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• DragonQuestHero / Medusa

  View on GitHub
  Radical Windows ARK
  ☆252Apr 18, 2025Updated last year
• MiroKaku / ucxxrt

  View on GitHub
  The Universal C++ RunTime library, supporting kernel-mode C++ exception-handler and STL.
  ☆405Jul 12, 2024Updated last year
• 1401199262 / Hook-KdTrap

  View on GitHub
  ☆225Mar 11, 2023Updated 3 years ago
• IcEy-999 / Ntoskrnl_Viewer

  View on GitHub
  可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。
  ☆108Sep 1, 2022Updated 3 years ago
• MiroKaku / Musa.Veil

  View on GitHub
  Collection of undocumented Windows API declarations.
  ☆346Apr 22, 2026Updated last week
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• Air14 / SymbolicAccess

  View on GitHub
  Static user/kernel mode library that allows access to all functions and global variables by extracting offsets from the PDB
  ☆123May 29, 2025Updated 11 months ago
• Oxygen1a1 / oxgenPdb

  View on GitHub
  a Windows kernel Pdb parsing and downloading library that running purely in kernel mode without any R3 programs.
  ☆177Sep 13, 2024Updated last year
• FiYHer / InfinityHookPro

  View on GitHub
  InfinityHookPro Win7 -> Win11 latest
  ☆554Feb 7, 2023Updated 3 years ago
• MiroKaku / DetoursX

  View on GitHub
  Kernel-Mode extended version of https://github.com/microsoft/Detours
  ☆179Jun 1, 2025Updated 10 months ago
• MapleSwan / enum_real_dirbase

  View on GitHub
  从MmPfnData中枚举进程和页目录基址
  ☆208Aug 18, 2023Updated 2 years ago
• zxd1994 / vt-debuuger

  View on GitHub
  a debugger use vt technology
  ☆356Jun 30, 2022Updated 3 years ago
• IcEy-999 / Drv_Hide_And_Camouflage

  View on GitHub
  ☆311May 11, 2023Updated 2 years ago
• jonomango / hv

  View on GitHub
  Lightweight Intel VT-x Hypervisor.
  ☆681Dec 17, 2024Updated last year
• MiroKaku / libwsk

  View on GitHub
  The Kernel-Mode Winsock library, supporting TCP, UDP and Unix sockets (DGRAM and STREAM).
  ☆287Jan 27, 2025Updated last year
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• 9176324 / Shark

  View on GitHub
  Turn off PatchGuard in real time for win7 (7600) ~ later
  ☆1,037Apr 21, 2022Updated 4 years ago
• MapleSwan / PageTableHook

  View on GitHub
  ☆143Dec 10, 2022Updated 3 years ago
• DragonQuestHero / Kernel-Anit-Anit-Debug-Plugins

  View on GitHub
  Kernel Anit Anit Debug Plugins 内核反反调试插件
  ☆480Aug 31, 2021Updated 4 years ago
• zouxianyu / query-pdb

  View on GitHub
  query-pdb is a server-side software for parsing PDB files. The software provides PDB online parsing service.
  ☆167Mar 30, 2026Updated 3 weeks ago
• Oxygen1a1 / DrvMon

  View on GitHub
  a monitoring windows driver calls kernel api tools
  ☆133Jul 5, 2024Updated last year
• Oxygen1a1 / kcrypt

  View on GitHub
  an encryption library designed for Windows kernel and driver programming
  ☆124Aug 4, 2023Updated 2 years ago
• lainswork / dwm-screen-shot

  View on GitHub
  将shellcode注入dwm.exe以进行屏幕截取
  ☆367Mar 22, 2022Updated 4 years ago
• AxtMueller / Windows-Kernel-Explorer

  View on GitHub
  A free but powerful Windows kernel research tool.
  ☆2,676Dec 14, 2025Updated 4 months ago
• 1401199262 / MemoryVirtualization

  View on GitHub
  ☆174Mar 9, 2022Updated 4 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• 1401199262 / RemoteCall

  View on GitHub
  ☆194May 1, 2023Updated 2 years ago
• BadPlayer555 / KernelGDIDraw

  View on GitHub
  The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.
  ☆347Apr 27, 2020Updated 6 years ago
• anzelesnik / SyscallHook

  View on GitHub
  System call hook for Windows 10 20H1
  ☆494Jun 26, 2021Updated 4 years ago
• liangfei44 / VmWareThrough

  View on GitHub
  ☆227Feb 21, 2023Updated 3 years ago
• llkbkh / Anti-Rootkit

  View on GitHub
  ☆54Dec 21, 2022Updated 3 years ago
• iPower / KasperskyHook

  View on GitHub
  Hook system calls on Windows by using Kaspersky's hypervisor
  ☆1,286Apr 2, 2026Updated 3 weeks ago
• Air14 / HyperHide

  View on GitHub
  Hypervisor based anti anti debug plugin for x64dbg
  ☆1,588Jul 8, 2024Updated last year
• AngleHony / WKTools

  View on GitHub
  WKTools Is a Power Windows Kernel Tools
  ☆359Apr 25, 2025Updated last year
• armasm / EasyAntiPatchGuard

  View on GitHub
  Easy Anti PatchGuard
  ☆221Apr 9, 2021Updated 5 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• HoShiMin / Kernel-Bridge

  View on GitHub
  Windows kernel hacking framework, driver template, hypervisor and API written on C++
  ☆1,812Nov 12, 2023Updated 2 years ago
• ClownQq / YDArk

  View on GitHub
  X64内核小工具
  ☆1,364Jan 18, 2024Updated 2 years ago
• HARM4Y / FOKS-TROT

  View on GitHub
  It's a minifilter used for transparent-encrypting.
  ☆343Jul 28, 2025Updated 9 months ago
• Kwansy98 / EasyPdb

  View on GitHub
  A very simple C++ library for download pdb, get rva of function, global variable and offset from struct.
  ☆160Mar 26, 2024Updated 2 years ago
• wbenny / KSOCKET

  View on GitHub
  KSOCKET provides a very basic example how to make a network connections in the Windows Driver by using WSK
  ☆545Sep 2, 2022Updated 3 years ago
• hzqst / unicorn_pe

  View on GitHub
  Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.
  ☆919Dec 29, 2025Updated 4 months ago
• Air14 / airhv

  View on GitHub
  Simple Intel VT-x hypervisor
  ☆362Dec 10, 2023Updated 2 years ago