Alternatives and similar repositories for windows-kernel-trojan

Users that are interested in windows-kernel-trojan are comparing it to the libraries listed below

• 0mWindyBug / DataptrHooks
  ntoskrnl .data hooks for UM-KM communication
  ☆40Updated last year
• SamuelTulach / MemoryGuard
  Experiment with PAGE_GUARD protection to hide memory from other processes
  ☆46Updated last year
• idkhidden / WinApiPatcher
  WinApi Patcher is a straightforward tool leveraging windows API hooking to patch and modify certain behaviors in a targeted environment.
  ☆43Updated 9 months ago
• 0mWindyBug / KernelInjector
  PoC kernel to usermode injection
  ☆87Updated last year
• DErDYAST1R / EAC-CR3Bypass
  My EAC & BE Rady CR3 Reading & Writing source that I use for my KM Drivers.
  ☆67Updated 10 months ago
• byte2mov / codecave-hook
  codecave hook reverse engineering toolkit.
  ☆38Updated last year
• DErDYAST1R / NmiCallbackBlocker
  Kernel Level NMI Callback Blocker
  ☆108Updated 10 months ago
• DErDYAST1R / SilentFunctionCaller
  Allows for same-file KernelMode function execution using Encrypted addresses of Functions
  ☆39Updated 8 months ago
• li4321 / GhostInjector
  ☆46Updated 5 months ago
• crvvdev / vac-bypass-kernel
  Fully working kernel-mode VAC bypass
  ☆79Updated 4 months ago
• DErDYAST1R / EfiGuardUsermodeLoader
  This is an EfiGuard BootLoader that can boot EfiGuard from Usermode with no USB or Setup as a Single Executable with automatic File Dumpi…
  ☆57Updated 9 months ago
• Oliver-1-1 / ModuleSpoof
  ☆78Updated last year
• nelfo / PGHooker
  PAGE_GUARD based hooking library
  ☆47Updated 2 years ago
• SurgeGotTappedAgain / Window-Hijack
  ☆57Updated last year
• illegal-instruction-co / ThreadIn
  Freeze target threads (external - internal ) by avoiding SuspendThread detections. Or access registers from start address.
  ☆32Updated last year
• benheise / KUCSharedMemory
  Kernel<->Usermode shared memory communcation using manually mapped driver
  ☆22Updated 3 years ago
• DErDYAST1R / 64KernelDriverCleaner
  A Kernel Driver that can be used for a cheat or malware base to circumvent common cache & structure table checks. PsLoadedModuleList howe…
  ☆135Updated 9 months ago
• estimated1337 / hidden_syscall
  hidden_syscall - syscaller without using syscall instruction in code
  ☆61Updated 2 years ago
• blueflagss / inline-syscall
  A simple direct syscall wrapper written in C++ with compatibility for x86 and x64 programs.
  ☆53Updated 5 months ago
• zer0condition / GDRVLib
  Virtual and physical memory hacking library using gigabyte vulnerable driver
  ☆71Updated 2 years ago
• paysonism / payson-ioctl-cheat-driver
  Read and Write process memory with this ioctl driver base. This is great for free cheats and learning kernel.
  ☆106Updated last year
• lxkast / frame
  POC Windows kernel driver that spoofs threads for NMI callbacks on x86-64.
  ☆22Updated 3 months ago
• samware-free / cr3driver
  cr3 shuffle driver
  ☆49Updated last year
• cutecatsandvirtualmachines / Sputnik
  The sequel to Voyager
  ☆65Updated 10 months ago
• ZEROWyt / Kernel-driver-eac-be-
  Made by scammer so i leak for free ! have fun
  ☆54Updated 2 years ago
• vasie1337 / sharedsection-driver
  driver that communicates using a shared section
  ☆65Updated 4 months ago
• Azvanzed / CVE-2024-44083
  Makes IDA (most versions) to crash upon opening it.
  ☆95Updated 10 months ago
• VollRagm / ShellcodeBakery
  A simple tool to assemble shellcode ready to be copy-pasted into code
  ☆69Updated 3 years ago
• android1337 / crycall
  Compile-Time Calls Obfuscator for C++14+
  ☆48Updated last year
• greyb1t / GreyM
  Me fockin' pe protector
  ☆45Updated 2 years ago