OMRI-FRX / check_EPT_hookLinks
无痕hook探测
☆43Updated 5 months ago
Alternatives and similar repositories for check_EPT_hook
Users that are interested in check_EPT_hook are comparing it to the libraries listed below
Sorting:
- 使用 Intel 虚拟化特性实现应用层HOOK☆64Updated 4 months ago
- 跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式…☆78Updated 2 years ago
- ☆46Updated 2 years ago
- Emulate Drivers in RING3 with self context mapping or unicorn☆31Updated last year
- 硬件虚拟化☆59Updated 4 months ago
- A POC to detect the exist of VMProtect 3 protection by search feature watermark.☆84Updated 2 years ago
- 一个仅使用2字节修改实现内核任意函数hook的方法。☆57Updated 7 months ago
- ☆50Updated last year
- A series of methods used to detect kernel shellcode for tencent game safe race 2024☆45Updated last year
- 对Windbg以Exdi模式下调试windows做一些修复☆16Updated 2 years ago
- Anti-Rootkit & System kernel management tool☆49Updated 3 weeks ago
- repeater☆25Updated 2 years ago
- 大部分常见windows内核文件合集 下方链接里有更多更全面的☆16Updated 2 years ago
- 一个windows内核驱动分析框架,对内核所有导出函数进行挂钩监控☆68Updated last month
- ☆54Updated 3 years ago
- IDA Pro plugin AntiXorstr☆151Updated 10 months ago
- Windows Kernel Security: Memory Integrity Verification with Disk Verification of ntoskrnl.exe☆15Updated 9 months ago
- anti cheat drv open source☆19Updated last year
- ☆19Updated last year
- ☆21Updated 4 months ago
- ☆47Updated 11 months ago
- ☆22Updated 3 years ago
- ☆27Updated 2 years ago
- Control Flow Flattening Deobfuscator for Obfuscator-LLVM as a plugin for IDA Pro.☆89Updated 8 months ago
- ☆32Updated 4 months ago
- Open source anti cheat engine☆43Updated last year
- Exploit vulnerabilities in NeacSafe64.sys to achieve privilege escalation and kernel-mode shellcode execution☆62Updated 6 months ago
- VEH debug plugin☆13Updated 3 years ago
- ☆14Updated last year
- 鹅城的百姓不需要有青天大老爷,于是黄四郎就出手干掉了很多好县长。☆27Updated 2 years ago