DarthTon/Blackbone external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

DarthTon/Blackbone

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/DarthTon/Blackbone)

Close

DarthTon / BlackboneView on GitHubMore

• External links
• Readme badge

Windows memory hacking library

☆5,422Jan 26, 2024Updated 2 years ago

Alternatives and similar repositories for Blackbone

Users that are interested in Blackbone are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• DarthTon / Xenos

  View on GitHub
  Windows dll injector
  ☆2,571May 17, 2021Updated 5 years ago
• everdox / InfinityHook

  View on GitHub
  Hook system calls, context switches, page faults and more.
  ☆2,657May 9, 2023Updated 3 years ago
• mrexodia / TitanHide

  View on GitHub
  Hiding kernel-driver for x86/x64.
  ☆2,753Sep 2, 2025Updated 9 months ago
• HoShiMin / Kernel-Bridge

  View on GitHub
  Windows kernel hacking framework, driver template, hypervisor and API written on C++
  ☆1,816Nov 12, 2023Updated 2 years ago
• 9176324 / Shark

  View on GitHub
  Turn off PatchGuard in real time for win7 (7600) ~ later
  ☆1,042Apr 21, 2022Updated 4 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• DarthTon / HyperBone

  View on GitHub
  Minimalistic VT-x hypervisor with hooks
  ☆945Oct 18, 2019Updated 6 years ago
• tandasat / DdiMon

  View on GitHub
  Monitoring and controlling kernel API calls with stealth hook using EPT
  ☆1,388Jan 22, 2022Updated 4 years ago
• tandasat / HyperPlatform

  View on GitHub
  Intel VT-x based hypervisor aiming to provide a thin VM-exit filtering platform on Windows.
  ☆1,751Nov 24, 2023Updated 2 years ago
• fancycode / MemoryModule

  View on GitHub
  Library to load a DLL from memory.
  ☆3,133Jan 3, 2024Updated 2 years ago
• TsudaKageyu / minhook

  View on GitHub
  The Minimalistic x86/x64 API Hooking Library for Windows
  ☆5,791May 5, 2026Updated last month
• wbenny / injdrv

  View on GitHub
  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
  ☆1,288May 1, 2024Updated 2 years ago
• stevemk14ebr / PolyHook_2_0

  View on GitHub
  C++20, x86/x64 Hooking Libary v2.0
  ☆1,858Nov 16, 2025Updated 6 months ago
• hfiref0x / KDU

  View on GitHub
  Kernel Driver Utility
  ☆2,598Updated this week
• ayoubfaouzi / al-khaser

  View on GitHub
  Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
  ☆6,992Jun 2, 2026Updated last week
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• JKornev / hidden

  View on GitHub
  🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc
  ☆2,024Jul 13, 2022Updated 3 years ago
• Mattiwatti / EfiGuard

  View on GitHub
  Disable PatchGuard and Driver Signature Enforcement at boot time
  ☆2,437May 11, 2026Updated last month
• AxtMueller / Windows-Kernel-Explorer

  View on GitHub
  A free but powerful Windows kernel research tool.
  ☆2,688Dec 14, 2025Updated 6 months ago
• HyperDbg / HyperDbg

  View on GitHub
  State-of-the-art native debugging tools
  ☆3,871Updated this week
• TheCruZ / kdmapper

  View on GitHub
  KDMapper is a simple tool that exploits iqvw64e.sys Intel driver to manually map non-signed drivers in memory
  ☆2,954Mar 21, 2026Updated 2 months ago
• JustasMasiulis / lazy_importer

  View on GitHub
  library for importing functions from dlls in a hidden, reverse engineer unfriendly way
  ☆1,920Aug 3, 2023Updated 2 years ago
• can1357 / ByePg

  View on GitHub
  Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.
  ☆909Nov 21, 2019Updated 6 years ago
• iPower / KasperskyHook

  View on GitHub
  Hook system calls on Windows by using Kaspersky's hypervisor
  ☆1,295Apr 2, 2026Updated 2 months ago
• ExpLife0011 / awesome-windows-kernel-security-development

  View on GitHub
  windows kernel security development
  ☆2,064Sep 6, 2022Updated 3 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• stephenfewer / ReflectiveDLLInjection

  View on GitHub
  Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loadi…
  ☆3,284Sep 3, 2022Updated 3 years ago
• rwfpl / rewolf-wow64ext

  View on GitHub
  Helper library for x86 programs that runs under WOW64 layer on x64 versions of Microsoft Windows operating systems.
  ☆1,007Jan 17, 2023Updated 3 years ago
• hfiref0x / TDL

  View on GitHub
  Driver loader for bypassing Windows x64 Driver Signature Enforcement
  ☆1,218Aug 1, 2019Updated 6 years ago
• Air14 / HyperHide

  View on GitHub
  Hypervisor based anti anti debug plugin for x64dbg
  ☆1,606Jul 8, 2024Updated last year
• btbd / access

  View on GitHub
  Access without a real handle
  ☆1,047Apr 10, 2021Updated 5 years ago
• hfiref0x / UPGDSED

  View on GitHub
  Universal PatchGuard and Driver Signature Enforcement Disable
  ☆875Mar 29, 2019Updated 7 years ago
• microsoft / Detours

  View on GitHub
  Detours is a software package for monitoring and instrumenting API calls on Windows. It is distributed in source code form.
  ☆6,287May 22, 2026Updated 3 weeks ago
• can1357 / NoVmp

  View on GitHub
  A static devirtualizer for VMProtect x64 3.x. powered by VTIL.
  ☆2,134Aug 8, 2021Updated 4 years ago
• hzqst / unicorn_pe

  View on GitHub
  Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.
  ☆920Dec 29, 2025Updated 5 months ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• monoxgas / sRDI

  View on GitHub
  Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode
  ☆2,529Nov 15, 2023Updated 2 years ago
• x64dbg / ScyllaHide

  View on GitHub
  Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide
  ☆4,164Jun 4, 2024Updated 2 years ago
• hzqst / Syscall-Monitor

  View on GitHub
  Syscall Monitor is a system monitor program (like Sysinternal's Process Monitor) using Intel VT-X/EPT for Windows7+
  ☆750Jun 26, 2017Updated 8 years ago
• can1357 / ThePerfectInjector

  View on GitHub
  Literally, the perfect injector.
  ☆994Apr 13, 2023Updated 3 years ago
• btbd / smap

  View on GitHub
  DLL scatter manual mapper
  ☆823Apr 10, 2021Updated 5 years ago
• zyantific / zydis

  View on GitHub
  Fast and lightweight x86/x86-64 disassembler and code generation library
  ☆4,254Jun 4, 2026Updated last week
• changeofpace / VivienneVMM

  View on GitHub
  VivienneVMM is a stealthy debugging framework implemented via an Intel VT-x hypervisor.
  ☆827Sep 7, 2020Updated 5 years ago