Alternatives and similar repositories for Kernelmode-driver

Users that are interested in Kernelmode-driver are comparing it to the libraries listed below

• auth12 / sysmap
  x64 manual mapper using inline syscalls
  ☆9Updated 4 years ago
• rbapat / KernelInjector
  Stealthy Injector that leverages a vulnerable driver and other exploits to remain undetected
  ☆36Updated 6 years ago
• alexcub89 / BEClient2
  ☆36Updated 5 years ago
• lennyRBLX / manual_exception_handling
  Handling C++ & __try exceptions without the need of built-in handlers.
  ☆71Updated 3 years ago
• Darkratos / Spoofed-Call
  A wrapper class to hide the original calling address of a function
  ☆57Updated 4 years ago
• zeroaceee / EDMapper
  A documented Windows x64 bit Usermode Injector that works via hooking IAT and hijacking its threads to execute shellcode.
  ☆65Updated last year
• 0xf1a / DSMM
  Discarded Section Manual Map
  ☆69Updated 5 years ago
• lennyRBLX / injection
  A resource for thread hijacking and manual mapping code, that works with MEM_MAPPED & MEM_IMAGE.
  ☆26Updated 4 years ago
• EBalloon / MapPage
  Mapping your code on a 0x1000 size page
  ☆72Updated 3 years ago
• maxkray13 / Cvc
  Communication via callback
  ☆73Updated 5 years ago
• weak1337 / SystemThreadFinder
  ☆81Updated 3 years ago
• vmcall / nt
  NT reversal
  ☆25Updated 7 years ago
• 0mdi / edgegdi_hook
  ☆15Updated 4 years ago
• KANKOSHEV / Detect-MouseClassServiceCallback
  mouseclassservicecallback detection via hook
  ☆50Updated 3 years ago
• rifk01 / RTTI_OBFUSCATOR_NOBOOST
  ☆38Updated 8 years ago
• SamuelTulach / InjectMouseInputExample
  C/C++ example of InjectMouseInput function
  ☆34Updated 4 years ago
• SHA-MRIZ / DisplayMiniportHooking
  ☆48Updated 4 years ago
• KANKOSHEV / Detect-HiddenThread-via-KPRCB
  Detect removed thread from PspCidTable.
  ☆72Updated 3 years ago
• mackiiN / KernelHackBase
  ☆47Updated 4 years ago
• crvvdev / intraceptor
  Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.
  ☆29Updated 3 years ago
• notscimmy / libinject
  Currently supports injecting signed/unsigned DLLs in 64-bit processes
  ☆63Updated 4 years ago
• armvirus / DriverDllFInder
  search for a driver/dll module that has a wanted section bigger than the size of your image
  ☆20Updated 3 years ago
• ex-ref / printa
  ☆18Updated 4 years ago
• helloobaby / Nmi-Callback
  detect hypervisor with Nmi Callback
  ☆39Updated 2 years ago
• ekknod / Nmi
  Old way for blocking NMI interrupts
  ☆27Updated 2 years ago
• guttir14 / HooksFinder
  Helps to find patched modules
  ☆29Updated 4 years ago
• weak1337 / EQProtect
  ☆27Updated 4 years ago
• KDIo3 / PCIBan
  A PoC for requesting HWIDs directly from hardware, skipping any potential hooks or OS support.
  ☆80Updated 4 years ago
• 0xGREG / registry-callbacks
  UM-KM Communication using registry callbacks
  ☆40Updated 5 years ago
• ch4ncellor / Inline-PatchFinder
  comparing data of module exports from disk and memory, then caching any differences.
  ☆22Updated 3 years ago