Alternatives and similar repositories for DisplayMiniportHooking

Users that are interested in DisplayMiniportHooking are comparing it to the libraries listed below

• ekknod / KiSystemStartupMeme
  Custom KiSystemStartup, can be used to modificate kernel before boot.
  ☆51Updated 3 years ago
• maxkray13 / Cvc
  Communication via callback
  ☆73Updated 6 years ago
• Sinclairq / tp-emulator
  A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe
  ☆73Updated 2 years ago
• ExpLife0011 / KeUserModeCallBack
  A Simple Example
  ☆23Updated 7 years ago
• 1401199262 / NMIStackWalk
  ☆72Updated 3 years ago
• lennyRBLX / manual_exception_handling
  Handling C++ & __try exceptions without the need of built-in handlers.
  ☆73Updated 4 years ago
• zhuhuibeishadiao / JunkDriveOpenSource
  Some garbage drivers written for getting started
  ☆66Updated 5 years ago
• helloobaby / Nmi-Callback
  detect hypervisor with Nmi Callback
  ☆40Updated 3 years ago
• KelvinMsft / PerfMon
  first commit
  ☆62Updated 5 years ago
• KelvinMsft / NoTruth
  ☆98Updated 8 years ago
• btbd / wpp
  Intercepting DeviceControl via WPP
  ☆135Updated 6 years ago
• Vicshann / GInjer
  Global DLL injector
  ☆69Updated 4 years ago
• crvvdev / intraceptor
  Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.
  ☆32Updated 3 years ago
• r1cky33 / krnl-gdi-render
  ☆107Updated 2 years ago
• MatrixKung / ntoskrnl
  Windows Kernel nt files - To research windows kernel
  ☆15Updated 5 years ago
• HyperDbg / RedDbg
  Hypervisor-based debugger for AMD processors
  ☆59Updated last year
• Darkratos / Spoofed-Call
  A wrapper class to hide the original calling address of a function
  ☆55Updated 5 years ago
• anzelesnik / MySyscall
  Example of hijacking system calls via function pointer tables
  ☆31Updated 4 years ago
• allogic / KDBG
  The windows kernel debugger consists of two parts, KMOD which is the kernel driver handling ring3 request and KCLI, the command line inte…
  ☆99Updated 3 years ago
• 0ffffffffh / system_call_hook_win10_1903
  This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness
  ☆53Updated 6 years ago
• alexcub89 / BEClient2
  ☆35Updated 5 years ago
• POPFD / HypervisorBase
  A library for intel VT-x hypervisor functionality supporting EPT shadowing.
  ☆51Updated 4 years ago
• zhuhuibeishadiao / WskHttp
  Windows kernel drivers simple HTTP library for modern C++
  ☆42Updated 7 years ago
• KANKOSHEV / Detect-HiddenThread-via-KPRCB
  Detect removed thread from PspCidTable.
  ☆75Updated 3 years ago
• fly55555 / ExdiGdbSrv
  WinDbg-Samples ExdiGdbSrv fork 修复了一部分Vmware调试的问题
  ☆29Updated 2 years ago
• adrianyy / x64-syscall
  x64 syscall caller in C++.
  ☆93Updated 7 years ago
• Broihon / Symbol-Parser
  Small class to parse debug info from PEs, download their respective PDBs from the Microsoft Public Symbol Server and calculate RVAs of fu…
  ☆44Updated 2 years ago
• Speedi13 / ManualMapped_SEH_32bit
  Enable SEH support for manual mapped x86-32bit PEs
  ☆69Updated 6 years ago
• RIscRIpt / wdmcpp
  Visual Studio Project example for using Microsoft's STL in WDM (Windows Kernel-mode Driver)
  ☆25Updated 4 years ago
• KDIo3 / PCIBan
  A PoC for requesting HWIDs directly from hardware, skipping any potential hooks or OS support.
  ☆83Updated 4 years ago