Alternatives and similar repositories for Shh0yaTool:

Users that are interested in Shh0yaTool are comparing it to the libraries listed below

• Shhoya / MutantKiller
  VMP Mutation API Fix
  ☆41Updated 3 years ago
• nblog / Vm2Import
  fix vmprotect import function used unicorn-engine.
  ☆92Updated last year
• BeneficialCode / KReClassEx
  Kernel ReClassEx
  ☆65Updated last year
• ilovecsad / veh_hide_memory
  ☆69Updated 3 years ago
• weak1337 / CEDetector
  ☆46Updated 3 years ago
• crtdll / bedaisy-reversal
  Some psuedo snippets from BattlEye's BEDaisy.sys loaded on Rainbow Six: Siege.
  ☆123Updated 2 years ago
• Broihon / Symbol-Parser
  Small class to parse debug info from PEs, download their respective PDBs from the Microsoft Public Symbol Server and calculate RVAs of fu…
  ☆43Updated 2 years ago
• boom-cr3 / VTableKFunctionHook
  This project will give you an example how you can hook a kernel vtable function that cannot be directly called
  ☆82Updated 3 years ago
• Sinclairq / hierarchy-eac
  Bypassing EasyAntiCheat.sys self-integrity by abusing call hierarchy
  ☆81Updated 2 years ago
• zer0condition / Reversing-a-signed-driver
  Reverse Engineering a signed kernel driver packed and virtualized with VMProtect 3.6
  ☆103Updated last year
• sunwm518 / VMProtect-3-5-DEvirt
  VMProtect, VMP, Devirter, 3,5
  ☆106Updated 2 years ago
• KiFilterFiberContext / VMP3-Disasm
  Experimental disassembler for x86 binaries virtualized by VMProtect 3
  ☆95Updated 2 years ago
• mrexodia / VMProtectTest
  VMProtectTest
  ☆35Updated 2 years ago
• zer0condition / GDRVLib
  Virtual and physical memory hacking library using gigabyte vulnerable driver
  ☆71Updated last year
• gmh5225 / FakeEnclave
  A poc that abuses Enclave
  ☆37Updated 2 years ago
• mike1k / pepp
  C++ library for parsing and manipulating PE files statically and dynamically.
  ☆86Updated last year
• xu-Wan / HypercallPageHook
  POC Hook of nt!HvcallCodeVa
  ☆50Updated last year
• sodareverse / TDE
  A devirtualization engine for Themida.
  ☆97Updated last year
• 1401199262 / NMIStackWalk
  ☆69Updated 2 years ago
• bytesundso / SneakCalls
  direct systemcalls with a modern c++20 interface.
  ☆42Updated 2 years ago
• alal4465 / KernelMon
  A ProcMon-esque tool for monitoring Windows Kernel Drivers
  ☆56Updated 3 years ago
• KANKOSHEV / Detect-KeAttachProcess
  Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.
  ☆112Updated 3 years ago
• Rythorndoran / PageTableHook
  ☆128Updated 2 years ago
• backengineering / Voyager
  A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)
  ☆54Updated last year
• lennyRBLX / manual_exception_handling
  Handling C++ & __try exceptions without the need of built-in handlers.
  ☆69Updated 3 years ago
• EBalloon / EasyAntiCheat-SRC
  ☆42Updated 2 years ago
• POPFD / HypervisorBase
  A library for intel VT-x hypervisor functionality supporting EPT shadowing.
  ☆49Updated 4 years ago
• zhuhuibeishadiao / WskHttp
  Windows kernel drivers simple HTTP library for modern C++
  ☆42Updated 6 years ago
• momo5502 / ept-hook-detection
  🪝 Different aproaches to detecting EPT hooks
  ☆102Updated 2 years ago
• Sinclairq / tp-emulator
  A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe
  ☆71Updated last year