Emulate Drivers in RING3 with self context mapping or unicorn
☆21Jan 1, 2025Updated last year
Alternatives and similar repositories for KACE
Users that are interested in KACE are comparing it to the libraries listed below
Sorting:
- Control Flow Linearization☆25May 4, 2025Updated 9 months ago
- A demonstration of hooking into the VMProtect-2 virtual machine☆24Nov 9, 2023Updated 2 years ago
- Logging library for kernel drivers written for the Windows NT operating system.☆21Oct 17, 2025Updated 4 months ago
- How to use PiDqSerializationWrite. Introduces how to safely read and write from mapped driver☆26May 29, 2023Updated 2 years ago
- fix wow obfucated IAT☆10Aug 4, 2021Updated 4 years ago
- Generate a PDB file given the old PDB file and an address mapping☆52Aug 3, 2025Updated 7 months ago
- VTable dumper for IDA 7.7+☆18Jun 19, 2025Updated 8 months ago
- A debugger library using VEH.☆69Sep 3, 2024Updated last year
- 对Windbg以Exdi模式下调试windows做一些修复☆21Aug 25, 2023Updated 2 years ago
- A C++ tool to inspect and extract contents from PyInstaller archives☆19Oct 19, 2025Updated 4 months ago
- 巨硬☆17Oct 4, 2023Updated 2 years ago
- ☆47Jul 7, 2024Updated last year
- ☆42Jan 7, 2025Updated last year
- A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)☆149Sep 3, 2023Updated 2 years ago
- Executes Read/Write process memory with `NtQueryCompositionSurfaceStatistics`☆23Feb 10, 2024Updated 2 years ago
- ☆14Dec 3, 2022Updated 3 years ago
- "Mingw64 Driver Plus Plus": Mingw64, C++, DDK and (EA)STL made easy!☆44Updated this week
- x86-64 Automated test data generator☆26Aug 18, 2025Updated 6 months ago
- A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering☆43Jun 10, 2025Updated 8 months ago
- CVM is a header-only turing-complete virtual machine engine made in pure C.☆33Nov 25, 2024Updated last year
- ☆22Oct 18, 2023Updated 2 years ago
- XPN's RpcEnum but based on IDA instead of Ghidra☆21Aug 17, 2019Updated 6 years ago
- ☆25Aug 7, 2023Updated 2 years ago
- Lightweight WINAPI tracing with Pin☆27Aug 22, 2019Updated 6 years ago
- vdk is a set of utilities used to help with exploitation of a vulnerable driver.☆46May 22, 2022Updated 3 years ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated 11 months ago
- Fork of Scylla with additional fixes and Python bindings.☆54Jul 16, 2024Updated last year
- ☆27Jun 24, 2022Updated 3 years ago
- kASLR bypass technique on Intel CPUs.☆32May 18, 2025Updated 9 months ago
- ☆43Apr 18, 2023Updated 2 years ago
- EWDK C++ toolchain for bazel☆11Feb 1, 2026Updated last month
- Windows Kernel Security: Memory Integrity Verification with Disk Verification of ntoskrnl.exe☆15Mar 23, 2025Updated 11 months ago
- IDA Pro plugin AntiXorstr☆154Feb 24, 2025Updated last year
- Framework to automate working with AST in IDA Pro☆75Apr 3, 2024Updated last year
- Reverse engineered API for Microsoft's Time Travel Debugger☆36Apr 18, 2024Updated last year
- Shows an example of how to implement VT-d/AMD-Vi on Windows☆163Sep 22, 2023Updated 2 years ago
- Use ntdll/ntoskrnl to implement Kernel32, Advapi32 and other APIs. It includes user-mode and kernel-mode.☆96Aug 26, 2025Updated 6 months ago
- Emulate Drivers in RING3 with self context mapping or unicorn☆32Dec 31, 2024Updated last year
- Mixed Boolean-Arithmetic in Rust for WebAssembly☆30Jun 14, 2025Updated 8 months ago