DownWithUp/WHPHook external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

DownWithUp/WHPHook

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/DownWithUp/WHPHook)

Close

DownWithUp / WHPHookView on GitHubMore

• External links
• Readme badge

Simple DLL and client app that work together to hook all the functions in WinHvPlatform.dll in order to provide logging and introspection at the hypervisor level

☆21Dec 1, 2021Updated 4 years ago

Alternatives and similar repositories for WHPHook

Users that are interested in WHPHook are comparing it to the libraries listed below

• h4xu3lyn / NTLib

  View on GitHub
  Headers for linking your software with ntdll.dll
  ☆15Nov 4, 2020Updated 5 years ago
• hellowworld1337 / ApexLegends-cheat

  View on GitHub
  pepex hack
  ☆10Oct 22, 2021Updated 4 years ago
• helloobaby / Nmi-Callback

  View on GitHub
  detect hypervisor with Nmi Callback
  ☆42Sep 25, 2022Updated 3 years ago
• huoji120 / Etw-Syscall

  View on GitHub
  https://key08.com/index.php/2021/10/19/1375.html
  ☆71May 11, 2022Updated 3 years ago
• helloobaby / HyperTool

  View on GitHub
  Intel learning hypervisor and some extend function
  ☆23Aug 23, 2025Updated 6 months ago
• Zero-Tang / SimpleWhpDemo

  View on GitHub
  Simple Demo of using Windows Hypervisor Platform
  ☆29Jul 14, 2025Updated 7 months ago
• alfarom256 / UserVAtoPhysical

  View on GitHub
  Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address
  ☆23Nov 22, 2021Updated 4 years ago
• not-wlan / instrumentation-callbacks

  View on GitHub
  based on https://github.com/secrary/Hooking-via-InstrumentationCallback
  ☆73Oct 29, 2019Updated 6 years ago
• ganboing / shim_test

  View on GitHub
  ☆15Mar 28, 2015Updated 10 years ago
• mmmmmon / KernelCjson

  View on GitHub
  The modifyed cjson that can running on windows kernel
  ☆15Mar 21, 2023Updated 2 years ago
• chaeyk / eac-leak

  View on GitHub
  this application shows EAC sdk's memory leak.
  ☆10Nov 30, 2021Updated 4 years ago
• KANKOSHEV / Detect-VM-and-Hypervisor

  View on GitHub
  Detect VM and Hypervisor
  ☆10Jun 16, 2021Updated 4 years ago
• DownWithUp / KLoad_C

  View on GitHub
  A simple command line utility to quickly load and unload Windows drivers
  ☆18Jul 2, 2022Updated 3 years ago
• craids / AresFramework

  View on GitHub
  Win32 PE Anti-RE and Anti-debugging Framework
  ☆13May 14, 2019Updated 6 years ago
• helloobaby / pdbtoheader

  View on GitHub
  pdb's function and global vars to offset
  ☆10Apr 11, 2023Updated 2 years ago
• Anal-Repair / gigabyte_gdrv3_exploit

  View on GitHub
  Rust program for interfacing with the gigabyte driver to gain access to powerful primitives such as arbitrary kernel memcpy.
  ☆17Nov 26, 2022Updated 3 years ago
• veil-ivy / Utils

  View on GitHub
  collection of code snippets,windbg,python scripts and resources
  ☆13Jul 11, 2022Updated 3 years ago
• eybee / Enigma-DeVirtualizer

  View on GitHub
  ☆14Mar 26, 2018Updated 7 years ago
• sodareverse / cppdumper

  View on GitHub
  C++ Program used to dump Themida and VMProtect.
  ☆34Dec 13, 2023Updated 2 years ago
• crtdll / battleye-decryption

  View on GitHub
  Decrypts multiple BattlEye packets from BEService<>BEDaisy (including those with multiple encryption layers) out to a console.
  ☆27Apr 14, 2022Updated 3 years ago
• muturikaranja / disable-threat-tracing

  View on GitHub
  Disable threat tracing from the kernel..
  ☆14Apr 8, 2022Updated 3 years ago
• malacupa / starhound-importer

  View on GitHub
  ☆15Jan 26, 2023Updated 3 years ago
• muturikaranja / kernel-windowless-wndproc-hook

  View on GitHub
  hooks gServerHandlers xxxEventWndProc
  ☆13May 1, 2022Updated 3 years ago
• coomed / skrrt-rust-external

  View on GitHub
  ☆10Aug 26, 2021Updated 4 years ago
• cxxrev0to1dev / nb_obfuscator

  View on GitHub
  win32/x64 obfuscate framework
  ☆33Apr 16, 2019Updated 6 years ago
• 0xhido / BlueLight

  View on GitHub
  Open-source EDR kernel-component for system monitoring and DLL injection
  ☆33Nov 14, 2020Updated 5 years ago
• ekknod / KiSystemStartupMeme

  View on GitHub
  Custom KiSystemStartup, can be used to modificate kernel before boot.
  ☆53Apr 7, 2022Updated 3 years ago
• JakeDahl / Osu-Bypass

  View on GitHub
  Circumvents HWID bans on the rhythm game osu
  ☆12Aug 4, 2019Updated 6 years ago
• helloobaby / infinityhookEx

  View on GitHub
  hook system call that on user mode
  ☆12Jan 27, 2022Updated 4 years ago
• yottaawesome / basic-windows-drivers

  View on GitHub
  Basic experimentation with Windows drivers.
  ☆17Mar 3, 2023Updated 2 years ago
• utshina / WHP-simple

  View on GitHub
  A simple example of using Windows Hypervisor Platform (WHP)
  ☆12Dec 18, 2020Updated 5 years ago
• xerub / LZVN

  View on GitHub
  LZVN compression/decompression tool
  ☆18Feb 9, 2021Updated 5 years ago
• wjcsharp / Common

  View on GitHub
  Shareds for kernel developement
  ☆29Dec 23, 2013Updated 12 years ago
• Lima-X / Singularity

  View on GitHub
  x64 PE-COFF virtualization driven obfuscation engine
  ☆58Oct 14, 2022Updated 3 years ago
• armasm / EasyAntiCheatMemorySig

  View on GitHub
  eac memory sig maker
  ☆14Jun 10, 2021Updated 4 years ago
• thalium / WinDbgFastObj

  View on GitHub
  ☆21Jun 3, 2021Updated 4 years ago
• Vector35 / snippets

  View on GitHub
  plugin for storing and using snippets of useful Binja script
  ☆29Jan 11, 2026Updated last month
• Dy-Baby / DSEDodge-Signed-Kernel-Driver

  View on GitHub
  ☆13Aug 24, 2022Updated 3 years ago
• MrAle98 / ATDCM64a-LPE

  View on GitHub
  ☆22Jan 15, 2025Updated last year