Alternatives and similar repositories for Syscall-Monitor:

Users that are interested in Syscall-Monitor are comparing it to the libraries listed below

• KelvinMsft / PerfMon
  first commit
  ☆57Updated 4 years ago
• yqsy / VT_demo
  ☆25Updated 7 years ago
• llkbkh / Anti-Rootkit
  ☆47Updated 2 years ago
• zhuhuibeishadiao / JunkDriveOpenSource
  Some garbage drivers written for getting started
  ☆64Updated 5 years ago
• helloobaby / infinityhookEx
  hook system call that on user mode
  ☆13Updated 3 years ago
• Air14 / SymbolicAccess
  Static user/kernel mode library that allows access to all functions and global variables by extracting offsets from the PDB
  ☆76Updated last year
• SHA-MRIZ / DisplayMiniportHooking
  ☆46Updated 4 years ago
• Broihon / Symbol-Parser
  Small class to parse debug info from PEs, download their respective PDBs from the Microsoft Public Symbol Server and calculate RVAs of fu…
  ☆42Updated last year
• Empyreal96 / W10M_unedited-decomp
  Pure Hex-rays Decompiler Psudocode of various Windows 10 Mobile binaries, No edit have been done to the output, you will need to piece to…
  ☆30Updated 3 years ago
• SHA-MRIZ / FsMinfilterHooking
  ☆30Updated 4 years ago
• amateurVV / AmateurVT
  ☆27Updated last year
• gmh5225 / FakeEnclave
  A poc that abuses Enclave
  ☆36Updated 2 years ago
• alexvogt91 / NetDriver
  kernel-mode TDI client which can send and receive HTTP requests
  ☆55Updated 6 years ago
• haidragon / NewInjectDrv
  APC注入DLL内核层
  ☆22Updated 6 years ago
• DragonQuestHero / DriverLoaderPro
  windows kernel deriver loader(pro)
  ☆46Updated 3 years ago
• icewall / ForceDelete
  Windows driver including couple different techniques for file removal when regular operation isn't possible.
  ☆67Updated 8 years ago
• fIappy / InfinityHook
  Hook system calls, context switches, page faults and more.
  ☆33Updated 5 years ago
• samshine / VoyagerWithEPT
  ☆27Updated 2 years ago
• 9176324 / Daat
  a simple intel vt code both support x86 & x64. PatchGuard monitor.
  ☆75Updated 3 years ago
• helloobaby / HyperTool
  Intel learning hypervisor and some extend function
  ☆22Updated last month
• alal4465 / KernelMon
  A ProcMon-esque tool for monitoring Windows Kernel Drivers
  ☆54Updated 3 years ago
• ldebug / ObRegisterCallBacksByPass
  Modify process handle permissions
  ☆59Updated 8 years ago
• adspro15 / DirectInput
  Simulate SendInput with ClassService
  ☆31Updated 6 years ago
• LLLZed / IDTHOOK
  IDT HOOK KiPageFault test Modified from： github.com/kanren3/x64-IDT-HOOK
  ☆15Updated 4 years ago
• MiroKaku / hde-mirro
  Hacker Disassembler Engine - mirro
  ☆17Updated 2 years ago
• nmgwddj / A-Protect
  ☆22Updated 6 years ago
• luciouskami / RemoveFlagTest
  Another method to anti ThreadHideFromDebugger
  ☆35Updated 5 years ago
• armasm / dwmhook
  noob hooking dwm for overlay
  ☆75Updated 4 years ago
• FiYHer / dxgkrnl_hook_ex
  以前改进的cheat内核通信模块,现在EAC Detected,现在发出来
  ☆52Updated 3 years ago
• kouzhudong / libdrv
  Static Library For Windows Drivers
  ☆33Updated last month