C++ Alt syscall hook in 25h2 can be load by KDU
☆26Feb 18, 2026Updated last month
Alternatives and similar repositories for Alt-Syscall-Hook
Users that are interested in Alt-Syscall-Hook are comparing it to the libraries listed below
Sorting:
- Claude Code plugin providing skills for x64dbg debugger automation☆78Updated this week
- A Windows Kernel Driver Emulator base on Unicorn, Kernel Memory Dump and some of native environment☆165Jan 15, 2026Updated 2 months ago
- A custom implementation of the Nanomites protection technology for Windows executables (x86 and x64) originally introduced by Silicon Rea…☆36Jan 11, 2026Updated 2 months ago
- ☆51Mar 6, 2026Updated last week
- Hands-on challenges for learning how to reverse engineer Flutter applications.☆42Jan 31, 2026Updated last month
- A Linux Kernel Exploitation C Library☆19Oct 29, 2025Updated 4 months ago
- Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in …☆55Dec 30, 2025Updated 2 months ago
- chernobog is a Hex-Rays decompiler plugin that defeats Hikari LLVM obfuscation.☆179Feb 10, 2026Updated last month
- Deobfuscation and Analysis of Ring-1.io☆79Feb 7, 2026Updated last month
- Windows Application Loader Running *.Exe files in Memory against Scrylla☆21Dec 20, 2019Updated 6 years ago
- Read Write Memory without attach☆91Aug 18, 2024Updated last year
- Free and open binary exploitation course for 2024 NCKUCTF☆44Oct 2, 2024Updated last year
- Awesome MalDev Links☆46Mar 2, 2026Updated 2 weeks ago
- Use NtSetInformationThread(ThreadBreakOnTermination) for anti-debugging☆15Sep 21, 2019Updated 6 years ago
- Installing wazuh SIEM Unified XDR and SIEM protection☆33Jun 3, 2025Updated 9 months ago
- ZYRA: Your Runtime Armor. ZYRA is an Zig-written obfuscator/packer for executable binaries.☆74Aug 5, 2025Updated 7 months ago
- A C++ Config System☆13Dec 15, 2023Updated 2 years ago
- Patches DSE by swapping both data ptrs located in SeValidateImageHeader && SeValidateImageData☆24Feb 9, 2024Updated 2 years ago
- Disable Kernel DMA Protection on Windows 11 via pre-boot DMA attack☆51Aug 18, 2025Updated 7 months ago
- This is similar to GdrvLoader but it works on EAC (& BE but same for GdrvLoader) with included gdrv.sys (cert)☆33Dec 8, 2025Updated 3 months ago
- [WIP] claude opus x86_64 disassembler/lifter/recompiler☆33Feb 12, 2026Updated last month
- ☆24Jul 15, 2023Updated 2 years ago
- An advanced library for protecting/obfuscating kernel drivers using the C++ 17 standard.☆25Mar 9, 2026Updated last week
- Generate Verilog bar controller from mmio trace logs.☆32Feb 18, 2025Updated last year
- 🔬 IDA plugin to find patched memory☆84Mar 1, 2026Updated 2 weeks ago
- AmongUsMenu is a Cheat Menu for the popular Game Among Us.☆10Oct 18, 2025Updated 5 months ago
- modern c++ wrapper around the microsoft portable executable file format☆35Nov 22, 2025Updated 3 months ago
- Squad Server Management Script Framework☆13May 15, 2020Updated 5 years ago
- Stealth-focused Intel VT-x hypervisor base (EAC/BE/ACs/AVs).☆79Updated this week
- A brief writeup for https://github.com/scwuaptx/HITCON-Training☆19Jul 22, 2018Updated 7 years ago
- Ivanti Pulse Secure CVE-2023-46805 Scanner - Based on Assetnote's Research☆12Jan 19, 2024Updated 2 years ago
- il2cpp scripting and hooking framework via LUA.☆14Nov 28, 2023Updated 2 years ago
- Usermode exploit to bypass any AC using a 0day shatter attack.☆263Nov 26, 2025Updated 3 months ago
- Cobalt Strike BOF to freeze EDR/AV processes and dump LSASS using WerFaultSecure.exe PPL bypass☆118Jan 29, 2026Updated last month
- dead project, dota sucks☆14Feb 17, 2020Updated 6 years ago
- 2021 iThome 鐵人賽☆52Oct 13, 2025Updated 5 months ago
- Windows kernel ROP-only implant exposing R/W primitives☆45Feb 1, 2026Updated last month
- The main repository of CargOS☆10Mar 24, 2025Updated 11 months ago
- ☆34Oct 10, 2023Updated 2 years ago