Alternatives and similar repositories for callstack_spoof:

Users that are interested in callstack_spoof are comparing it to the libraries listed below

• Rythorndoran / PageTableHook
  ☆125Updated 2 years ago
• 1401199262 / RemoteCall
  ☆176Updated last year
• IcEy-999 / Kernel-Special-APC-ReadProcessMemory
  Example of reading process memory through kernel special APC
  ☆101Updated last year
• killvxk / llvm-msvc-ex
  Forked LLVM focused on MSVC Compatibility. This version is designed for windows users
  ☆84Updated last week
• Rythorndoran / enum_real_dirbase
  从MmPfnData中枚举进程和页目录基址
  ☆155Updated last year
• KameronHawk / Kernel-VAD-Injector
  Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver
  ☆164Updated last year
• oakboat / RTCore64_Vulnerability
  Use RTCore64 to map your driver on windows 11.
  ☆95Updated 10 months ago
• MmMapIoSpace / UCMapper
  Unknowncheats Magically Optimized Tidy Mapper using nvaudio
  ☆117Updated 8 months ago
• 1401199262 / MemoryVirtualization
  ☆162Updated 2 years ago
• rogxo / ReadPhys
  r/w virtual memory without attach
  ☆162Updated last year
• 1401199262 / Hook-KdTrap
  ☆197Updated last year
• 2367765883 / hidedriver-normal
  ☆32Updated 4 months ago
• zhutingxf / InfinityHookPro
  InfinityHook 支持Win7 到 Win11 最新版本，虚拟机环境及物理机环境
  ☆45Updated 4 months ago
• wbaby / DoubleCallBack
  ☆152Updated 2 years ago
• Oxygen1a1 / oxgenPdb
  a Windows kernel Pdb parsing and downloading library that running purely in kernel mode without any R3 programs.
  ☆148Updated 5 months ago
• cs1ime / sehcall
  Windows X64 mode use seh in manual mapped dll or manual mapped sys
  ☆70Updated 2 years ago
• 3499409631 / ReadPhysicalMemory-Without-API
  This project can bypass most of the AC except for some perverts that enable VT to monitor page tables
  ☆40Updated 9 months ago
• Oxygen1a1 / DrvMon
  a monitoring windows driver calls kernel api tools
  ☆102Updated 7 months ago
• SDXT / MMInject
  Kernel DLL Injector using NX Bit Swapping and VAD hide for hiding injected DLL
  ☆207Updated 4 years ago
• cutecatsandvirtualmachines / SKLib
  Standard Kernel Library for Windows hacking in C++
  ☆128Updated 2 months ago
• 0mWindyBug / GhostMapperUM
  manual map unsigned driver over signed memory
  ☆186Updated 10 months ago
• ilovecsad / veh_hide_memory
  ☆68Updated 2 years ago
• KANKOSHEV / Detect-KeAttachProcess
  Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.
  ☆109Updated 3 years ago
• IcEy-999 / Ntoskrnl_Viewer
  可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。
  ☆107Updated 2 years ago
• cs1ime / KernelDwm
  Kernel dwm render
  ☆137Updated last year
• huoji120 / MakeInfinityHookGreatAgain
  让Etwhook再次伟大! Make InfinityHook Great Again!
  ☆128Updated 3 years ago
• EBalloon / Rw-No-Attach
  ☆151Updated 8 months ago
• ThomasonZhao / InfinityHookProMax
  InfinityHookProMax: Make InfinityHook great great again
  ☆42Updated last year
• Air14 / SymbolicAccess
  Static user/kernel mode library that allows access to all functions and global variables by extracting offsets from the PDB
  ☆80Updated last year
• saveme712 / BinCon
  A library to assist with memory & code protection.
  ☆53Updated 11 months ago