Alternatives and similar repositories for Occulto

Users that are interested in Occulto are comparing it to the libraries listed below

• NewWorldComingSoon / UnknownField
  UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.
  ☆44Updated 2 years ago
• backengineering / vmhook
  A demonstration of hooking into the VMProtect-2 virtual machine
  ☆19Updated last year
• iqrw0 / DieDMAProtection
  ☆22Updated last year
• boom-cr3 / NotifyRoutineHijackThread
  Hijack NotifyRoutine for a kernelmode thread
  ☆42Updated 2 years ago
• 1401199262 / InstrumentationCallback
  ☆27Updated 2 years ago
• DErDYAST1R / NMICallbackBlocker2
  This is a POC Test project for INTEL CPUs on blocking NMI Entries through the IDT Handler.
  ☆50Updated 7 months ago
• bytesundso / SneakCalls
  direct systemcalls with a modern c++20 interface.
  ☆42Updated 2 years ago
• Qfrost911 / KACE
  Emulate Drivers in RING3 with self context mapping or unicorn
  ☆17Updated 4 months ago
• 1401199262 / HookHvcallCodeVa
  ☆22Updated 2 years ago
• vxcall / ZwDetectMemoryRead
  neat way to detect memory read using nt layer function.
  ☆14Updated last year
• gmh5225 / FakeEnclave
  A poc that abuses Enclave
  ☆38Updated 2 years ago
• 1401199262 / HookSwapContext
  ☆29Updated 2 years ago
• DenuvoSoftwareSolutions / DVRT
  How Meltdown and Spectre haunt Anti-Cheat: DVRT details
  ☆21Updated 8 months ago
• helloobaby / Nmi-Callback
  detect hypervisor with Nmi Callback
  ☆34Updated 2 years ago
• veryboreddd / Return-address-spoofer
  Illustrates the concept of return address spoofing, and how it is used.
  ☆13Updated 5 years ago
• xsh3llsh0ck / PicoHook
  Small driver that uses alternative syscalls feature (the project is still under development).
  ☆15Updated last year
• emlinhax / DriverTimestampFaker
  Fake Timestamps of Driver Certificates while keeping validity.
  ☆17Updated 3 years ago
• mrexodia / MBR
  EDR PoC WIP LLC
  ☆11Updated last year
• m-odern / focus-theme-for-ida-pro-7.6
  ☆30Updated 3 years ago
• xtremegamer1 / vmdevirt-vtil
  ☆27Updated last year
• gmh5225 / S4Mapper
  Not mine, just saved
  ☆12Updated last year
• Midi12 / whse
  WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API
  ☆22Updated 3 years ago
• kkent030315 / CiGetCertPublisherName
  An example code of CiGetCertPublisherName
  ☆15Updated 3 years ago
• MiroKaku / HRSword-Portable
  https://www.huorong.cn/
  ☆14Updated last year
• idkhidden / idashare
  idashare is an IDA Pro plugin that allows you to quickly share the currently loaded binary and IDA database over a local HTTP server with…
  ☆10Updated last month
• kagasu / VEHTest
  Example of making debugger using Hardware Breakpoint + VEH
  ☆18Updated 4 years ago
• ByteWhite1x1 / PatchGuardResearch
  Bypassing kernel patch protection runtime
  ☆20Updated 2 years ago
• milankovo / zydisinfo
  ☆18Updated 3 months ago
• hugsy / modern-cpp-windows-driver-template
  Windows driver template, using C++20 & cmake & GithubActions
  ☆22Updated 9 months ago
• BerkanYildiz / LoggerNT
  Logging library for kernel drivers written for the Windows NT operating system.
  ☆19Updated 2 months ago