Alternatives and similar repositories for SDS

Users that are interested in SDS are comparing it to the libraries listed below

• wjcsharp / Common
  Shareds for kernel developement
  ☆28Updated 11 years ago
• SamLarenN / MIR-Engine
  MIR-Engine
  ☆24Updated 7 years ago
• KelvinMsft / SyncJobs_MPSystem
  ☆13Updated 6 years ago
• JKornev / DLib-Attacher
  Simple program for static hooking dynamic libraries in executable application
  ☆22Updated 11 years ago
• kernullist / krn_pcre
  Windows Kernel Mode PCRE
  ☆10Updated 10 years ago
• HollyDi / Ring0Hook
  ☆11Updated 7 years ago
• ajkhoury / Dude-Loader
  Class implementation of PowerLoader injection technique
  ☆31Updated 8 years ago
• lldre / handle_exploration
  Figuring out the cause of a handle downgrade
  ☆24Updated 2 years ago
• arcpop / Observer
  ☆17Updated 8 years ago
• everdox / pintools
  Contains various pintools to supplement the Intel DBI framework
  ☆12Updated 10 years ago
• JKornev / NTlib
  Static library and headers for linking your software with ntdll.dll
  ☆32Updated 5 years ago
• changeofpace / x64dbg-Anti-Debug-POC
  viewing page boundaries of pages with PAGE_NOACCESS protection reveals the presence of x64dbg.
  ☆23Updated 8 years ago
• C485 / ReturnAddressHider
  Simple header only library to change return address on current stack frame.
  ☆24Updated 8 years ago
• wj32 / umkcf
  User-mode kernel callback framework
  ☆10Updated 11 years ago
• exploder2013 / TDL-Exploit-Driver
  A driverless driver that is supposed to be manually mapped, usually by using TDL exploit. The driver shows how to read/write to any proce…
  ☆21Updated 7 years ago
• mq1n / hSonic
  New handle stealing technique for windows apps
  ☆13Updated 7 years ago
• changeofpace / Remote-Process-Cookie-for-Windows-7
  Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.
  ☆22Updated 8 years ago
• megabytefisher / SilentBreakpoints
  a method for undetectable breakpoints in 32-bit Windows programs
  ☆13Updated 11 years ago
• JKornev / PE-Compare-Tools
  UI application that can compare PE images in memory or in raw PE file
  ☆17Updated 11 years ago
• AzureGreen / WinNT-Learning
  Notes my learning steps about Windows-NT
  ☆23Updated 8 years ago
• mgeeky / prc_xchk
  User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.
  ☆19Updated 9 years ago
• lololosys / TitanHideWindbgPlugin-
  ☆14Updated 7 years ago
• zer0fl4g / OllyCallstack
  simple plugin for lastest olly versions to display the callstack
  ☆16Updated 12 years ago
• EvilKnight1986 / Simrep
  windows kernel File redirection
  ☆20Updated 10 years ago
• aaaddress1 / APCInjector-BYPASS-AV
  ☆19Updated 9 years ago
• mrexodia / BreakpointUnresolved
  Plugin for x64dbg to break on unresolved APIs.
  ☆12Updated 7 years ago
• zer0mem / VadScanner
  PoC of BOOST-ed _EPROCESS.VadRoot iterating
  ☆25Updated 11 years ago
• somma / wmiq
  Handy WMI query tool.
  ☆12Updated 9 years ago
• fantasyboy / steamlogin
  ☆10Updated 7 years ago
• IgorKorkin / AllMemProTestBed
  Legal access: The driver and console app to demonstrate the basic memory access in kernel mode
  ☆9Updated 7 years ago