Alternatives and similar repositories for vergilius-project:

Users that are interested in vergilius-project are comparing it to the libraries listed below

• repnz / apc-research
  APC Internals Research Code
  ☆165Updated 4 years ago
• 0xcpu / ExecutiveCallbackObjects
  Research on Windows Kernel Executive Callback Objects
  ☆286Updated 5 years ago
• CheckPointSW / showstopper
  ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…
  ☆205Updated 2 years ago
• 0xcpu / WinAltSyscallHandler
  Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999
  ☆209Updated 5 years ago
• VoidSec / DriverBuddyReloaded
  Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks
  ☆354Updated 6 months ago
• Cr4sh / KernelForge
  A library to develop kernel level Windows payloads for post HVCI era
  ☆396Updated 3 years ago
• kkent030315 / PageTableInjection
  Code Injection, Inject malicious payload via pagetables pml4.
  ☆235Updated 3 years ago
• hasherezade / module_overloading
  A more stealthy variant of "DLL hollowing"
  ☆347Updated last year
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆245Updated 2 years ago
• ioncodes / ceload
  BYOVD: Loading dbk64.sys and grabbing a handle to it
  ☆150Updated 2 years ago
• SinaKarvandi / Process-Magics
  This is a collection of interesting codes about Windows Process creation.
  ☆232Updated last year
• hfiref0x / WubbabooMark
  Debugger Anti-Detection Benchmark
  ☆328Updated last year
• can1357 / NtRays
  Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
  ☆588Updated 2 months ago
• vxcute / WindowsInternals
  Yet another windows internals repo
  ☆206Updated 3 years ago
• JustasMasiulis / ida_bitfields
  IDA Pro plugin to make bitfield accesses easier to grep
  ☆232Updated 2 months ago
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆143Updated 2 years ago
• kkent030315 / NoPatchGuardCallback
  x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code
  ☆202Updated 3 years ago
• hugsy / CFB
  Canadian Furious Beaver is a ProcMon-style tool designed only for capturing IRPs sent to any Windows driver.
  ☆318Updated last year
• repnz / autochk-rootkit
  Reverse engineered source code of the autochk rootkit
  ☆201Updated 5 years ago
• Fyyre / DrvMon
  Advanced driver monitoring utility.
  ☆208Updated 2 years ago
• airbus-cert / comida
  An IDA Plugin that help analyzing module that use COM
  ☆208Updated last year
• mike1k / HookHunter
  Analyze patches in a process
  ☆251Updated 3 years ago
• JustasMasiulis / wow64pp
  A modern c++ implementation of windows heavens gate
  ☆218Updated 4 years ago
• hasherezade / masm_shc
  A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.
  ☆175Updated this week
• VollRagm / PTView
  Browse Page Tables on Windows (Page Table Viewer)
  ☆197Updated 3 years ago
• waleedassar / RestrictedKernelLeaks
  ☆159Updated 3 years ago
• hfiref0x / NtCall64
  Windows NT x64 syscall fuzzer
  ☆602Updated last year
• 3gstudent / Inject-dll-by-APC
  Asynchronous Procedure Calls
  ☆223Updated 4 years ago
• AdamOron / PatchGuardBypass
  Bypassing PatchGuard on modern x64 systems
  ☆257Updated 2 years ago
• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆136Updated 8 months ago