Emulate Drivers in RING3 with self context mapping or unicorn
☆21Jan 1, 2025Updated last year
Alternatives and similar repositories for KACE
Users that are interested in KACE are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Control Flow Linearization☆25May 4, 2025Updated 10 months ago
- A demonstration of hooking into the VMProtect-2 virtual machine☆24Nov 9, 2023Updated 2 years ago
- How to use PiDqSerializationWrite. Introduces how to safely read and write from mapped driver☆26May 29, 2023Updated 2 years ago
- Logging library for kernel drivers written for the Windows NT operating system.☆21Oct 17, 2025Updated 5 months ago
- fix wow obfucated IAT☆10Aug 4, 2021Updated 4 years ago
- 巨硬☆17Oct 4, 2023Updated 2 years ago
- x86-64 Automated test data generator☆26Aug 18, 2025Updated 7 months ago
- ☆42Jan 7, 2025Updated last year
- A C++ tool to inspect and extract contents from PyInstaller archives☆20Oct 19, 2025Updated 5 months ago
- ☆48Jul 7, 2024Updated last year
- Generate a PDB file given the old PDB file and an address mapping☆53Aug 3, 2025Updated 7 months ago
- A debugger library using VEH.☆69Sep 3, 2024Updated last year
- IDA Pro plugin AntiXorstr☆155Feb 24, 2025Updated last year
- 对Windbg以Exdi模式下调试windows做一些修复☆21Aug 25, 2023Updated 2 years ago
- VTable dumper for IDA 7.7+☆19Jun 19, 2025Updated 9 months ago
- CVM is a header-only turing-complete virtual machine engine made in pure C.☆34Nov 25, 2024Updated last year
- A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)☆160Sep 3, 2023Updated 2 years ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated 11 months ago
- Shows an example of how to implement VT-d/AMD-Vi on Windows☆171Sep 22, 2023Updated 2 years ago
- Lightweight WINAPI tracing with Pin☆27Aug 22, 2019Updated 6 years ago
- ☆14Dec 3, 2022Updated 3 years ago
- XPN's RpcEnum but based on IDA instead of Ghidra☆21Aug 17, 2019Updated 6 years ago
- KNSoft.NDK provides native C/C++ definitions and import libraries for Windows NT.☆21Updated this week
- ☆22Oct 18, 2023Updated 2 years ago
- ☆27Jun 24, 2022Updated 3 years ago
- kASLR bypass technique on Intel CPUs.☆32May 18, 2025Updated 10 months ago
- A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering☆43Jun 10, 2025Updated 9 months ago
- ☆43Apr 18, 2023Updated 2 years ago
- 🤡 single header wrapper around Windows WMI for C++☆14Jan 26, 2022Updated 4 years ago
- vdk is a set of utilities used to help with exploitation of a vulnerable driver.☆46May 22, 2022Updated 3 years ago
- A minimal CR3 protection PoC (KdpTrap hook)☆16Jan 25, 2025Updated last year
- My software engineering notes.☆24Nov 12, 2025Updated 4 months ago
- 一个将 vmnote 指令集重编译成 x64 指令集的脚本,并且可以用 IDA 进行分析。☆17Jul 12, 2021Updated 4 years ago
- "Mingw64 Driver Plus Plus": Mingw64, C++, DDK and (EA)STL made easy!☆44Mar 16, 2026Updated last week
- Executes Read/Write process memory with `NtQueryCompositionSurfaceStatistics`☆23Feb 10, 2024Updated 2 years ago
- ☆225Mar 11, 2023Updated 3 years ago
- ☆12Feb 2, 2025Updated last year
- ☆15Sep 24, 2012Updated 13 years ago
- PointerGuard is a proof-of-concept tool used to create 'guarded' pointers which disguise pointer addresses, monitor reads/writes, and pre…☆57May 23, 2022Updated 3 years ago