Idov31 / NovaHypervisorLinks
NovaHypervisor is a defensive x64 Intel host based hypervisor. The goal of this project is to protect against kernel based attacks (either via Bring Your Own Vulnerable Driver (BYOVD) or other means) by safeguarding defense products (AntiVirus / Endpoint Protection) and kernel memory structures and preventing unauthorized access to kernel memory…
☆236Updated 3 months ago
Alternatives and similar repositories for NovaHypervisor
Users that are interested in NovaHypervisor are comparing it to the libraries listed below
Sorting:
- Rewrite and obfuscate code in compiled binaries☆273Updated last month
- bypassing intel txt's tboot integrity checks via coreboot shim☆83Updated 10 months ago
- Virtual Trust Level (VTL 1) secure call tracing☆86Updated 4 months ago
- ☆93Updated last year
- The Windbg extensions to study Hyper-V on Intel and AMD processors.☆169Updated 4 months ago
- Windows kernel debugger for Linux hosts running Windows under KVM/QEMU☆114Updated 3 weeks ago
- A set of LLVM and GCC based plugins that perform code obfuscation.☆136Updated 2 months ago
- Windows 11 24H2-25H2 Runtime PatchGuard Bypass☆236Updated 2 months ago
- ☆157Updated 2 weeks ago
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆160Updated last year
- uefi diskless persistence technique + OVMF secureboot bypass☆95Updated last year
- RISC-V Virtual Machine☆275Updated 7 months ago
- An x86-64 code virtualizer for VM based obfuscation☆160Updated last year
- Windows KASLR bypass using prefetch side-channel☆171Updated last year
- C++ macro for x64 programs that breaks ida hex-rays decompiler tool.☆137Updated last year
- Ryūjin Protector - Is a Intel Arch - BIN2BIN - PE Obfuscation/Protection/DRM tool☆280Updated last month
- Hells Hollow Windows 11 Rootkit technique to Hook the SSDT via Alt Syscalls☆209Updated 4 months ago
- Find out how to bypass HVCI (or not). My own research on Microsoft Warbird (specifically in clipsp.sys)☆85Updated 2 months ago
- All LLVM binaries scrambled with SigBreaker and used to test against llvm-lit☆25Updated 8 months ago
- Anti-Rootkit/Anti-Cheat Driver to uncover unbacked or hidden kernel code.☆274Updated last month
- A universal binary patching dll.☆114Updated last year
- ☆89Updated 11 months ago
- Admin to Kernel code execution using the KSecDD driver☆258Updated last year
- Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…☆131Updated 2 years ago
- SMM UEFI module and client for UMD privilege escalation☆64Updated 7 months ago
- Single header version of System Informer's phnt library.☆240Updated this week
- Finding Truth in the Shadows☆120Updated 2 years ago
- VFGadget locator to facilitate Counterfeit Object-Oriented Programming (COOP) and Loop-Oriented Programming (LOP) attacks to bypass advan…☆23Updated 9 months ago
- Modular and extensible library for Virtual Machine Introspection☆113Updated 5 months ago
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆248Updated last year