Scrut1ny / Hypervisor-PhantomLinks
Advanced malware analysis tool for evading detection from advanced malware.
☆357Updated this week
Alternatives and similar repositories for Hypervisor-Phantom
Users that are interested in Hypervisor-Phantom are comparing it to the libraries listed below
Sorting:
- my patches for linux kernel to spoof rdtsc and make vm exit undetected☆242Updated 11 months ago
- A patch to hide qemu itself, bypass mhyprot,EAC,nProtect / VMProtect,VProtect, Themida, Enigma Protector,Safegine Shielden☆1,075Updated last year
- A guide for spoofing KVM☆106Updated last year
- PoC TSC offsetting in KVM☆132Updated 4 years ago
- xigmapper is a driver manual mapper that loads your driver before Vanguard, but after critical system infrastructure has been set up, all…☆258Updated last year
- Unsigned driver loader using CVE-2018-19320☆279Updated 2 years ago
- Efi Driver Access is a simply project to load a driver during system boot with the idea to give the user kernel access for read/write mem…☆425Updated 2 years ago
- A revival of the classic and legendary KsDumper☆480Updated 5 months ago
- QEMU patched to avoid detection from various anticheats such as Battleye/EAC☆74Updated last year
- This is a project for spoofing windows as much as possible to become untraceable for detection purposes and others.☆86Updated 4 months ago
- Simple proof of concept kernel mode driver hooking tpm.sys dispatch to randomize any public key reads☆213Updated last year
- A somewhat wide collection of various kernelmode-usermode communication methods in one repository (mainly just for learning purposes).☆346Updated 5 years ago
- PoC HWID spoofer that runs in EFI☆310Updated 6 months ago
- Hide SMBIOS/disk/NIC serials from EFI bootkit☆299Updated 4 years ago
- A small DMA library making your life with your DMA easier☆128Updated last year
- scan system / process integrity☆336Updated 8 months ago
- A patch to hide PVE itself☆392Updated last year
- Simple proof of concept showing how you can use Discord's in-game internal module to draw on top of the game (even if the game is in full…☆181Updated last year
- Manual mapper that uses PTE manipulation, Virtual Address Descriptor (VAD) manipulation, and forceful memory allocation to hide executabl…☆332Updated 3 years ago
- usermode driver mapper that forcefully loads any signed kernel driver (legit cert) with a big enough section (example: .data, .rdata) to …☆434Updated 3 years ago
- kernel mode spoofer disk and smbios, socket communication☆185Updated 2 years ago
- ☆213Updated last week
- update face injector by KANKOSHEV☆275Updated 3 years ago
- Modified Cheat Engine DBK64 driver☆197Updated 2 months ago
- Fumo Loader - All in one kernel-based DLL injector☆303Updated 5 months ago
- Guide for patching AMI Aptio V UEFI firmware to circumvent Secure Boot checks