Oliver-1-1/EtwKeyboardDetection external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Oliver-1-1/EtwKeyboardDetection

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Oliver-1-1/EtwKeyboardDetection)

Close

Oliver-1-1 / EtwKeyboardDetectionView on GitHubMore

• External links
• Readme badge

☆37Sep 26, 2024Updated last year

Alternatives and similar repositories for EtwKeyboardDetection

Users that are interested in EtwKeyboardDetection are comparing it to the libraries listed below

• Oliver-1-1 / TOPMOST-Detection

  View on GitHub
  ☆18Feb 5, 2025Updated last year
• Oliver-1-1 / DumpDriver

  View on GitHub
  ☆47Jul 7, 2024Updated last year
• Oliver-1-1 / MouseDetection

  View on GitHub
  ☆34Mar 3, 2024Updated 2 years ago
• emlinhax / tableflipper

  View on GitHub
  partially disable patchguard up to win11 21H2
  ☆19Jun 3, 2024Updated last year
• kkpwn / ErisDbg

  View on GitHub
  ☆16Aug 28, 2024Updated last year
• dnz-c / proxyproc

  View on GitHub
  read / write memory from a proxy process by injecting shellcode
  ☆20Dec 23, 2025Updated 2 months ago
• Oliver-1-1 / ModuleSpoof

  View on GitHub
  ☆82Apr 23, 2024Updated last year
• xinnie-the-pooh / MS

  View on GitHub
  巨硬
  ☆17Oct 4, 2023Updated 2 years ago
• MmMapIoSpace / UCMapper

  View on GitHub
  Unknowncheats Magically Optimized Tidy Mapper using nvaudio
  ☆153Jun 11, 2024Updated last year
• VollRagm / PTView

  View on GitHub
  Browse Page Tables on Windows (Page Table Viewer)
  ☆234Apr 2, 2022Updated 3 years ago
• Zpes / pte-protect

  View on GitHub
  ☆37May 21, 2022Updated 3 years ago
• helloobaby / Nmi-Callback

  View on GitHub
  detect hypervisor with Nmi Callback
  ☆42Sep 25, 2022Updated 3 years ago
• SamuelTulach / vmcheck

  View on GitHub
  ☆23Oct 28, 2020Updated 5 years ago
• brew02 / BudgetEPT

  View on GitHub
  Create stealthy, inline, EPT-like hooks using SMAP and SMEP
  ☆61Oct 19, 2024Updated last year
• Oliver-1-1 / SmmInfect

  View on GitHub
  ☆275Sep 2, 2025Updated 6 months ago
• stuxnet147 / Win-Kernel-PiDqSerializationWrite-Example

  View on GitHub
  How to use PiDqSerializationWrite. Introduces how to safely read and write from mapped driver
  ☆26May 29, 2023Updated 2 years ago
• MapleSwan / SessionMapper

  View on GitHub
  将驱动映射到会话空间
  ☆38Aug 27, 2022Updated 3 years ago
• donnaskiez / hv

  View on GitHub
  intel vt-x type 2 hypervisor
  ☆64Apr 13, 2025Updated 10 months ago
• Nitr0-G / DriverLoader

  View on GitHub
  it's a driver injector or driver loader header lib(Windows)
  ☆12Aug 5, 2023Updated 2 years ago
• ekknod / Nmi

  View on GitHub
  Old way for blocking NMI interrupts
  ☆29Sep 6, 2022Updated 3 years ago
• jonomango / superfetch

  View on GitHub
  Translate virtual addresses to physical addresses from usermode.
  ☆104Jun 7, 2024Updated last year
• IcEy-999 / PDB-Frame

  View on GitHub
  对debughelp的二次开发
  ☆11Feb 20, 2023Updated 3 years ago
• IcEy-999 / Ntoskrnl_Viewer

  View on GitHub
  可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。
  ☆109Sep 1, 2022Updated 3 years ago
• GetRektBoy724 / KPDB

  View on GitHub
  Windows PDB parser for kernel-mode environment.
  ☆110Jun 7, 2025Updated 8 months ago
• IcEy-999 / Kernel-Special-APC-ReadProcessMemory

  View on GitHub
  Example of reading process memory through kernel special APC
  ☆111Apr 21, 2023Updated 2 years ago
• Oliver-1-1 / GhostMapper

  View on GitHub
  ☆361May 11, 2025Updated 9 months ago
• ekknod / acdrv

  View on GitHub
  base for testing
  ☆187Sep 28, 2024Updated last year
• chainloaded / Kernel-HTTP-Client

  View on GitHub
  Minimalistic HTTP(S) client for the NT kernel
  ☆62Dec 1, 2025Updated 3 months ago
• cutecatsandvirtualmachines / SKLib

  View on GitHub
  Standard Kernel Library for Windows manipulation in C++
  ☆201Jun 18, 2025Updated 8 months ago
• SamuelTulach / HookGuard

  View on GitHub
  Hooking Windows' exception dispatcher to protect process's PML4
  ☆228Jan 24, 2025Updated last year
• Compiled-Code / eac-mapper

  View on GitHub
  undetected eac mapper
  ☆171May 3, 2022Updated 3 years ago
• YouNeverKnow00 / Disable-nmi-callbacks

  View on GitHub
  Disable NMI Callbacks with Kernelmode Driver
  ☆18Mar 15, 2023Updated 2 years ago
• sunnamed434 / UnityVulnerableEntryPoint

  View on GitHub
  Looks for a vulnerable entry point to bypass BE Anti Cheat or other in Ring3
  ☆19Feb 25, 2023Updated 3 years ago
• stdhu / windows-kernel-pagehook

  View on GitHub
  windows kernel pagehook
  ☆42Oct 30, 2022Updated 3 years ago
• donnaskiez / nmi

  View on GitHub
  nmi stackwalking + module verification
  ☆163Dec 28, 2023Updated 2 years ago
• cs1ime / DICHook

  View on GitHub
  Hook NtDeviceIoControlFile with PatchGuard
  ☆107May 10, 2022Updated 3 years ago
• Dy-Baby / DSEDodge-Signed-Kernel-Driver

  View on GitHub
  ☆13Aug 24, 2022Updated 3 years ago
• nulledc0de / phantom_thread

  View on GitHub
  POC kernel driver with hidden system thread
  ☆13May 14, 2024Updated last year
• papstuc / portable_executable

  View on GitHub
  modern c++ wrapper around the microsoft portable executable file format
  ☆38Nov 22, 2025Updated 3 months ago