Alternatives and similar repositories for VExDebugger

Users that are interested in VExDebugger are comparing it to the libraries listed below

• Sinclairq / tp-emulator
  A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe
  ☆73Updated 2 years ago
• 1401199262 / NMIStackWalk
  ☆72Updated 3 years ago
• BeneficialCode / KReClassEx
  Kernel ReClassEx
  ☆65Updated 2 years ago
• helloobaby / Nmi-Callback
  detect hypervisor with Nmi Callback
  ☆41Updated 3 years ago
• gmh5225 / ida-find-.data-ptr
  A simple ida python script to find .data ptr
  ☆55Updated 2 years ago
• SamuelTulach / SecureHack
  Cheat for my own game SecureGame which uses a bootkit to hyperjack Hyper-V in order to access VBS enclave's memory
  ☆87Updated last year
• Nou4r / Cool-Hypervisor
  A intel hypervisor, implementing many virtualization techniques
  ☆51Updated 2 years ago
• samshine / VoyagerWithEPT
  ☆60Updated 3 years ago
• Sinclairq / hierarchy-eac
  Bypassing EasyAntiCheat.sys self-integrity by abusing call hierarchy
  ☆83Updated 3 years ago
• KiFilterFiberContext / VMP3-Disasm
  Experimental disassembler for x86 binaries virtualized by VMProtect 3
  ☆97Updated 3 years ago
• GetRektBoy724 / KPDB
  Windows PDB parser for kernel-mode environment.
  ☆103Updated 6 months ago
• lennyRBLX / manual_exception_handling
  Handling C++ & __try exceptions without the need of built-in handlers.
  ☆73Updated 4 years ago
• mibho / x64dbg-vmp-trace
  unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…
  ☆63Updated last year
• Ahora57 / Unabomber
  Improved VMP Idea(detect anti-anti-debug tools by bug)
  ☆46Updated 2 years ago
• vasie1337 / sharedsection-driver
  driver that communicates using a shared section
  ☆74Updated 8 months ago
• ThomasonZhao / InfinityHookProMax
  InfinityHookProMax: Make InfinityHook great great again
  ☆48Updated 2 years ago
• misslng / boundcallback
  ☆33Updated 2 years ago
• papstuc / portable_executable
  modern c++ wrapper around the microsoft portable executable file format
  ☆32Updated 2 weeks ago
• MapleSwan / SessionMapper
  将驱动映射到会话空间
  ☆37Updated 3 years ago
• backengineering / VDM
  Library to manipulate drivers that expose a physical memory read/write primitive.
  ☆30Updated 2 years ago
• ekknod / Nmi
  Old way for blocking NMI interrupts
  ☆26Updated 3 years ago
• ItzPAX / supermode
  page table manipulation to gain physical r/w
  ☆42Updated last year
• crtdll / bedaisy-reversal
  Some psuedo snippets from BattlEye's BEDaisy.sys loaded on Rainbow Six: Siege.
  ☆128Updated 3 years ago
• saveme712 / BinCon
  A library to assist with memory & code protection.
  ☆65Updated last year
• HyperDbg / RedDbg
  Hypervisor-based debugger for AMD processors
  ☆61Updated last year
• ekknod / KiSystemStartupMeme
  Custom KiSystemStartup, can be used to modificate kernel before boot.
  ☆51Updated 3 years ago
• ekknod / efi-monitor
  just proof of concept. hooking MmCopyMemory PG safe.
  ☆77Updated 2 years ago
• momo5502 / ept-hook-detection
  🪝 Various EPT hook detection approaches
  ☆141Updated 4 months ago
• cs1ime / sehcall
  Windows X64 mode use seh in manual mapped dll or manual mapped sys
  ☆76Updated 3 years ago
• pTerrance / alpc-km-um
  POC usermode <=> kernel communication via ALPC.
  ☆65Updated last year