POPFD / HypervisorBaseLinks
A library for intel VT-x hypervisor functionality supporting EPT shadowing.
☆51Updated 4 years ago
Alternatives and similar repositories for HypervisorBase
Users that are interested in HypervisorBase are comparing it to the libraries listed below
Sorting:
- My research WIP bluepill hypervisor☆41Updated 2 years ago
- detect hypervisor with Nmi Callback☆39Updated 2 years ago
- Type 2 Hypervisor for security research supported by AMD-V hardware assisted virtualization☆40Updated 2 years ago
- comparing data of module exports from disk and memory, then caching any differences.☆26Updated 3 years ago
- A poc that abuses Enclave☆39Updated 2 years ago
- Visual Studio Project example for using Microsoft's STL in WDM (Windows Kernel-mode Driver)☆25Updated 4 years ago
- ☆69Updated 4 years ago
- A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe☆72Updated 2 years ago
- Example of hijacking system calls via function pointer tables☆31Updated 4 years ago
- Experimental disassembler for x86 binaries virtualized by VMProtect 3☆95Updated 2 years ago
- This is a ring -1 header framework in order to simplify the creation of hypervisors on SVM☆26Updated last year
- This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness☆53Updated 5 years ago
- Intel learning hypervisor and some extend function☆22Updated last week
- Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.☆29Updated 3 years ago
- ☆34Updated 2 years ago
- ☆30Updated 3 years ago
- POC Hook of nt!HvcallCodeVa☆52Updated 2 years ago
- windows kernel pagehook☆40Updated 2 years ago
- Custom KiSystemStartup, can be used to modificate kernel before boot.☆52Updated 3 years ago
- Simple and lightweight hypervisor for AMD processors☆34Updated 8 months ago
- direct systemcalls with a modern c++20 interface.☆44Updated 2 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆67Updated 2 years ago
- A Simple Example☆22Updated 6 years ago
- NT reversal☆26Updated 7 years ago
- a simple intel vt code both support x86 & x64. PatchGuard monitor.☆76Updated 3 years ago
- vdk is a set of utilities used to help with exploitation of a vulnerable driver.☆40Updated 3 years ago
- x64 assembler library☆31Updated last year
- Stealthy Injector that leverages a vulnerable driver and other exploits to remain undetected☆36Updated 6 years ago
- ☆38Updated 2 years ago
- ☆28Updated 2 years ago