Alternatives and similar repositories for CodeIntegrity-DriverBlocklist

Users that are interested in CodeIntegrity-DriverBlocklist are comparing it to the libraries listed below

• hasherezade / libpeconv_and_detours_tpl
  A template for projects using both libPeConv and MS Detours
  ☆15Updated 2 years ago
• hasherezade / libpeconv_tpl
  A ready-made template for a project based on libpeconv.
  ☆49Updated 5 months ago
• jonny-jhnson / MSFT_DriverBlockList
  Repository of Microsoft Driver Block Lists based off of OS-builds
  ☆39Updated last year
• 7eRoM / elam
  A Practical example of ELAM (Early Launch Anti-Malware)
  ☆34Updated 3 years ago
• airbus-cert / etwbreaker
  An IDA plugin to deal with Event Tracing for Windows (ETW)
  ☆55Updated 3 years ago
• decoder-it / CreateTokenExample
  ☆18Updated 6 years ago
• namazso / PEDiffGen
  Subtract one PE file from another!
  ☆22Updated 3 years ago
• Fleex255 / CustomShim
  Example/starter code for custom Windows application compatibility shims
  ☆35Updated 4 years ago
• tyranid / setsidmapping
  Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.
  ☆23Updated 4 years ago
• nccgroup / mimikatz-detector-condrv
  The Console Monitor Driver is a KMDF kernel-mode filter driver that captures certain Fast I/O operations (input and output) that is sent …
  ☆39Updated 2 years ago
• hasherezade / paramkit
  A small library helping to parse commandline parameters (for C/C++)
  ☆57Updated last month
• gabriellandau / CISpotter
  Code Integrity Violation Spotter
  ☆16Updated last year
• SafeBreach-Labs / CoWTools
  Tools for analyzing Windows containers and break container's isolation
  ☆32Updated 2 years ago
• zer0condition / IDTHook-x86
  Detour hooking IRQ1 ISR through IDT (Interrupt Descriptor Table)
  ☆20Updated 2 years ago
• am0nsec / vxlib
  C Header Only Library for Virii
  ☆10Updated 4 years ago
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆69Updated last year
• nickvangilder / To-Safe-Mode-And-Beyond
  A tool for leveraging elevated acess over a computer to boot the computer into Windows Safe Mode, alter settings, and then boot back into…
  ☆16Updated 3 years ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year
• ioncodes / rw
  allowing um r/w through km from um ioctl ™
  ☆11Updated 3 years ago
• connormcgarr / Presentations
  ☆28Updated 8 months ago
• DimopoulosElias / Primitives
  ☆31Updated 4 years ago
• nccgroup / WindowsJobLock
  Windows Process Lockdown Tool using Job Objects
  ☆69Updated 11 years ago
• yo-yo-yo-jbo / anti_debugging_intro
  ☆25Updated 2 years ago
• nettitude / hyperv-driver-thread-detection-poc
  hyperv-driver-thread-detection-poc
  ☆11Updated 4 years ago
• OSRDrivers / deleteex
  Demonstrate the new FileDispositionInfoEx behavior
  ☆14Updated 7 years ago
• Andy53 / ERC.net
  A collection of tools for debugging Windows application crashes.
  ☆15Updated 2 years ago
• pr0tean / TelemetrySourcerer-patched
  Tiny driver patch to allow kernel callbacks to work on Win10 21h1
  ☆34Updated 3 years ago
• hasherezade / tag_converter
  ☆22Updated 4 years ago
• hasherezade / pe_utils
  A set of small utilities, helpers for PIN tracers
  ☆32Updated last year
• eset / vulnerability-disclosures
  Repository of vulnerabilities disclosed by ESET
  ☆28Updated 3 years ago