CR3Swapper/bluepill external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

CR3Swapper/bluepill

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/CR3Swapper/bluepill)

Close

CR3Swapper / bluepillView on GitHubMore

• External links
• Readme badge

☆15May 2, 2024Updated last year

Alternatives and similar repositories for bluepill

Users that are interested in bluepill are comparing it to the libraries listed below

• unknowntrojan / mapparse

  View on GitHub
  a parser for the .map file included in the aimware leak
  ☆16Feb 19, 2023Updated 3 years ago
• rsnrsnrsn / Code-execution-by-abusing-VEH

  View on GitHub
  Achieving code execution through abusing vectored exception handling
  ☆17May 28, 2023Updated 2 years ago
• DenuvoSoftwareSolutions / DVRT

  View on GitHub
  How Meltdown and Spectre haunt Anti-Cheat: DVRT details
  ☆22Aug 21, 2024Updated last year
• Ahora57 / HypervisorCheckR0

  View on GitHub
  Just check hypervisor in ring0
  ☆16Jun 7, 2023Updated 2 years ago
• backengineering / POC-AntiKernelDebug

  View on GitHub
  POC about how to detect windows kernel debug by pool tag.
  ☆13Nov 29, 2023Updated 2 years ago
• Valthrun / valthrun-uefi-mapper

  View on GitHub
  Windows driver mapper via the UEFI
  ☆58Jul 13, 2025Updated 8 months ago
• binsnake / picanha

  View on GitHub
  [WIP] claude opus x86_64 disassembler/lifter/recompiler
  ☆33Feb 12, 2026Updated last month
• cursey / x64-virtualizer-rs

  View on GitHub
  x86-64 virtualizing obfuscator written in Rust
  ☆78Nov 16, 2023Updated 2 years ago
• redthing1 / w1tn3ss

  View on GitHub
  binary instrumentation, analysis, and patching framework
  ☆101Feb 20, 2026Updated last month
• not-matthias / vmprotect-rs

  View on GitHub
  Rust bindings for VMProtect.
  ☆28Mar 8, 2024Updated 2 years ago
• LabGuy94 / Diskjacker

  View on GitHub
  Hijacking Hyper-V at Runtime with DDMA
  ☆90Aug 13, 2025Updated 7 months ago
• mrexodia / MBR

  View on GitHub
  EDR PoC WIP LLC
  ☆10Feb 9, 2024Updated 2 years ago
• carlos-al / windows-kernel-rs

  View on GitHub
  ☆21May 30, 2024Updated last year
• asamy / NastyAlignment

  View on GitHub
  Simple anti-instrumentation with EFLAGS.AC
  ☆17Mar 31, 2025Updated 11 months ago
• backengineering / vmhook

  View on GitHub
  A demonstration of hooking into the VMProtect-2 virtual machine
  ☆24Nov 9, 2023Updated 2 years ago
• tandasat / barevisor

  View on GitHub
  A bare minimum hypervisor on AMD and Intel processors for learners.
  ☆340Sep 27, 2025Updated 5 months ago
• niluxv / secmem-proc

  View on GitHub
  Process hardening in rust
  ☆14Dec 31, 2025Updated 2 months ago
• sleepyG8 / GlyphDbg

  View on GitHub
  RE for champions
  ☆15Mar 10, 2026Updated last week
• zodi4cx / OpenSesame

  View on GitHub
  A bootkit to bypass Windows login (WIP)
  ☆10Oct 25, 2023Updated 2 years ago
• iqrw0 / DieDMAProtection

  View on GitHub
  ☆29Mar 9, 2024Updated 2 years ago
• b-irb / PigPEI

  View on GitHub
  PEIM (UEFI) bootkit targeting OVMF (EDK2)
  ☆41Nov 28, 2023Updated 2 years ago
• Aki2k / badeye

  View on GitHub
  handle elevation using bedaisy.
  ☆12Aug 17, 2020Updated 5 years ago
• ZehMatt / x86Tester

  View on GitHub
  x86-64 Automated test data generator
  ☆26Aug 18, 2025Updated 7 months ago
• SamuelTulach / winzentool

  View on GitHub
  Port of zentool to Windows
  ☆27Mar 7, 2025Updated last year
• vmsplit / checkm8

  View on GitHub
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆83Mar 15, 2025Updated last year
• mooncat-greenpy / x64dbg_TraceExecLoggerPlugin

  View on GitHub
  x64dbg plugin to log executions
  ☆16Aug 28, 2023Updated 2 years ago
• davidegat / happy-prompts

  View on GitHub
  Utterly unelegant prompts for local LLMs, with scary results.
  ☆24Aug 22, 2025Updated 6 months ago
• Kqlu666 / Eac-Be-Injector

  View on GitHub
  ☆41Feb 16, 2024Updated 2 years ago
• ck0i / Cloakwork

  View on GitHub
  An advanced singular header-only C++20 obfuscation library with encryption and polymorphism.
  ☆83Updated this week
• zer0condition / NTMemory

  View on GitHub
  Usermode NT Explorer - Query kernel addresses, translate virtual to physical addresses, inspect the PFN database, and more.
  ☆73Updated this week
• armvirus / VanguardTrace

  View on GitHub
  Decrypting and intercepting encrypted imports of Vanguards Kernel Driver
  ☆34Feb 13, 2024Updated 2 years ago
• R0rt1z2 / sprig

  View on GitHub
  WIP bl2_ext thingy for ARMv8 MTK devices
  ☆27Jan 27, 2026Updated last month
• DErDYAST1R / GDRVMapper

  View on GitHub
  This is similar to GdrvLoader but it works on EAC (& BE but same for GdrvLoader) with included gdrv.sys (cert)
  ☆33Dec 8, 2025Updated 3 months ago
• JustasMasiulis / process_handle

  View on GitHub
  A cross platform, leak free system handle wrapper
  ☆19Oct 24, 2017Updated 8 years ago
• mactec0 / elfprotect

  View on GitHub
  Protecting ELF binaries against RE with virtualization and code packing
  ☆18Feb 2, 2024Updated 2 years ago
• ck0i / Kernelcloak

  View on GitHub
  An advanced library for protecting/obfuscating kernel drivers using the C++ 17 standard.
  ☆25Mar 9, 2026Updated last week
• SamuelTulach / SecureHack

  View on GitHub
  Cheat for my own game SecureGame which uses a bootkit to hyperjack Hyper-V in order to access VBS enclave's memory
  ☆116Dec 8, 2024Updated last year
• ionescu007 / hazmat5

  View on GitHub
  Local OXID Resolver (LCLOR) : Research and Tooling
  ☆37May 19, 2021Updated 4 years ago
• JGonz1337 / r6-internal

  View on GitHub
  ☆12Sep 3, 2022Updated 3 years ago