A Windows Kernel Driver Emulator base on Unicorn, Kernel Memory Dump and some of native environment
☆165Jan 15, 2026Updated 2 months ago
Alternatives and similar repositories for KDemu
Users that are interested in KDemu are comparing it to the libraries listed below
Sorting:
- Registers Vectored Exception Handlers by directly manipulating internal LdrpVectorHandlerList structure instead of calling RtlAddVectored…☆35Jan 18, 2026Updated 2 months ago
- C++ Alt syscall hook in 25h2 can be load by KDU☆26Feb 18, 2026Updated last month
- .data ptr swapper for newer win32k versions. (Supports Windows 11)☆38Jan 19, 2026Updated 2 months ago
- Minimalistic HTTP(S) client for the NT kernel☆62Dec 1, 2025Updated 3 months ago
- ☆21Feb 24, 2026Updated 3 weeks ago
- C++ Assembler with Built-in Mutation Engine☆30Sep 6, 2025Updated 6 months ago
- Dragoon☆13Aug 8, 2017Updated 8 years ago
- A Windows PE packer for executables (x64) with LZMA compression and with full TLS (Thread Local Storage) support.☆94Oct 27, 2025Updated 4 months ago
- Windows kernel driver that detects hypervisors by probing SIDT/LIDT edge cases, paging/TLB behaviors, privilege transitions, and timing e…☆37Mar 3, 2026Updated 2 weeks ago
- Stealth-focused Intel VT-x hypervisor base (EAC/BE/ACs/AVs).☆79Updated this week
- My CTF Challenge☆11Feb 5, 2026Updated last month
- Try to transport the tcpip stack of ReactOS to Windows XP.☆17Feb 27, 2014Updated 12 years ago
- VM devirtualization PoC based on AsmJit and llvm☆123Sep 14, 2021Updated 4 years ago
- Binary lifter and deobfuscator using remill for x86_64 Windows binaries☆73Mar 10, 2026Updated last week
- Make You Happy!☆264Mar 7, 2026Updated last week
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated 11 months ago
- A simple parser(library) which extracts shimcache data from windows.☆15May 20, 2019Updated 6 years ago
- An x86-64 code virtualizer for VM based obfuscation☆177Dec 21, 2024Updated last year
- Deobfuscation via optimization with usage of LLVM IR and parsing assembly.☆779Mar 8, 2026Updated last week
- 对Windbg以Exdi模式下调试windows做一些修复☆21Aug 25, 2023Updated 2 years ago
- A DLL Injection Detector for Windows.☆77Oct 18, 2025Updated 5 months ago
- minimal hypervisor for aarch64 (WIP)☆31Nov 29, 2025Updated 3 months ago
- Kernel driver that .text hooks a syscall in dxgkrnl.sys which can be called from our user-mode client to send instructions like rpm/wpm a…☆213Dec 16, 2022Updated 3 years ago
- ☆19Oct 25, 2024Updated last year
- Terminal-based IDA disassembly, microcode and pseudocode dumper☆44Mar 11, 2026Updated last week
- ☆73Aug 31, 2022Updated 3 years ago
- COFF and Portable Executable format described using standard C++ with no dependencies.☆344Apr 24, 2025Updated 10 months ago
- Logging library for kernel drivers written for the Windows NT operating system.☆21Oct 17, 2025Updated 5 months ago
- Use ntdll/ntoskrnl to implement Kernel32, Advapi32 and other APIs. It includes user-mode and kernel-mode.☆96Aug 26, 2025Updated 6 months ago
- 一個測試CVE-2024-4577和CVE-2024-8926的安全滲透工具☆44Mar 29, 2025Updated 11 months ago
- Walks the CFG bitmap to find previously executable but currently hidden shellcode regions☆133May 17, 2023Updated 2 years ago
- An x86-64 Code Virtualizer☆310Sep 26, 2024Updated last year
- Monitor ETW events for Windows process mitigation policies, with stack traces☆31Oct 7, 2022Updated 3 years ago
- Hooking Windows' exception dispatcher to protect process's PML4☆233Jan 24, 2025Updated last year
- Visual Studio Project example for using Microsoft's STL in WDM (Windows Kernel-mode Driver)☆25Jun 22, 2021Updated 4 years ago
- Windows Application Loader Running *.Exe files in Memory against Scrylla☆21Dec 20, 2019Updated 6 years ago
- a ringcon based IDA Pro controller☆72Jan 26, 2024Updated 2 years ago
- Walks through the 4-level paging structures in Windows x64☆13Feb 12, 2023Updated 3 years ago
- Rendering on external windows via hijacking thread contexts, with notes on ValidateHwnd☆14Jul 9, 2020Updated 5 years ago