Alternatives and similar repositories for scripts

Users that are interested in scripts are comparing it to the libraries listed below

• HyperDbg / docs
  This is the documentation of HyperDbg Debugger. You can also visit https://docs.hyperdbg.org
  ☆24Updated 2 months ago
• HyperDbg / awesome
  A list of awesome resources about HyperDbg
  ☆77Updated 4 months ago
• tandasat / recon2024_demo
  Provides commands to read from and write to arbitrary kernel-mode memory for users with the Administrator privilege. HVCI compatible. No …
  ☆23Updated last year
• tandasat / kraft_dinner
  Tool to dump UEFI runtime drivers implementing runtime services for Windows
  ☆111Updated 5 years ago
• kkent030315 / NtSymbol
  Resolve DOS MZ executable symbols at runtime
  ☆96Updated 4 years ago
• tandasat / hvext
  The Windbg extensions to study Hyper-V on Intel and AMD processors.
  ☆169Updated 5 months ago
• alal4465 / KernelMon
  A ProcMon-esque tool for monitoring Windows Kernel Drivers
  ☆61Updated 4 years ago
• wizardengineer / krakensvm-mg
  A simple x86_64 AMD-v hypervisor type-2 Programmed with C++, with soon to be added syscall hooks. [W.I.P]
  ☆103Updated 2 years ago
• Nitr0-G / SVM-Hypervisor
  This is a ring -1 header framework in order to simplify the creation of hypervisors on SVM
  ☆27Updated 2 years ago
• HyperDbg / gui
  HyperDbg's Graphical User Interface (GUI)
  ☆81Updated 5 months ago
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆67Updated 2 years ago
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆88Updated 5 years ago
• SamuelTulach / unxorer
  Yet another IDA Pro/Home plugin for deobfuscating stack strings
  ☆117Updated last week
• Sinclairq / tp-emulator
  A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe
  ☆75Updated 2 years ago
• xtremegamer1 / Illicit-memory-allocation
  This driver hooks a device object for ioctl and uses mdls to allocate physical pages and manually injects an entry into a process's page …
  ☆15Updated 2 years ago
• t3ssellate / unmapper
  An automatic tool for fixing dumped PE files
  ☆42Updated 5 years ago
• pRain1337 / Hermes
  SMM UEFI module and client for UMD privilege escalation
  ☆65Updated 8 months ago
• HyperDbg / RedDbg
  Hypervisor-based debugger for AMD processors
  ☆63Updated last year
• jonomango / chum
  Binary rewriter for 64-bit PE files.
  ☆98Updated 2 years ago
• IntroVirt / IntroVirt
  IntroVirt is an guest introspection library for KVM
  ☆60Updated last week
• calware / HV-Playground
  A simple and heavily documented series of test hypervisors built for 64-bit Windows 10 systems running under Intel's VT-x
  ☆34Updated 5 years ago
• mrexodia / driver_unpacking
  Ghetto user mode emulation of Windows kernel drivers.
  ☆158Updated last year
• gmh5225 / FakeEnclave
  A poc that abuses Enclave
  ☆40Updated 3 years ago
• tandasat / HelloIommuPkg
  The sample DXE runtime driver demonstrating how to program DMA remapping.
  ☆73Updated 2 years ago
• adrianyy / x64-syscall
  x64 syscall caller in C++.
  ☆93Updated 7 years ago
• sariaki / amd-hypervisor
  a minimalistic windows hypervisor for amd processors
  ☆136Updated 3 years ago
• BeneficialCode / KReClassEx
  Kernel ReClassEx
  ☆66Updated 2 years ago
• ColeStrickler / 1337Visor
  Type 2 Hypervisor for security research supported by AMD-V hardware assisted virtualization
  ☆41Updated 3 years ago
• ajkhoury / Errata1337
  ☆68Updated 5 years ago
• GetRektBoy724 / KPDB
  Windows PDB parser for kernel-mode environment.
  ☆103Updated 8 months ago