VollRagm / PTViewLinks
Browse Page Tables on Windows (Page Table Viewer)
☆216Updated 3 years ago
Alternatives and similar repositories for PTView
Users that are interested in PTView are comparing it to the libraries listed below
Sorting:
- Kernel driver for detecting Intel VT-x hypervisors.☆193Updated 2 years ago
- ☆147Updated 4 years ago
- Demo proof of concept for shadow regions, and implementation of HyperDeceit.☆298Updated 2 years ago
- A proof of concept demonstrating instrumentation callbacks on Windows 10 21h1 with a TLS variable to ensure all syscalls are caught.☆139Updated 3 years ago
- Hooking Windows' exception dispatcher to protect process's PML4☆198Updated 8 months ago
- Ghetto user mode emulation of Windows kernel drivers.☆146Updated 11 months ago
- Load your driver like win32k.sys☆257Updated 3 years ago
- nmi stackwalking + module verification☆133Updated last year
- Analyze patches in a process☆256Updated 4 years ago
- memory introspection and reverse engineering hypervisor powered by leveraging Hyper-V☆343Updated 2 months ago
- Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.☆147Updated 3 years ago
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆233Updated 11 months ago
- Debugger Anti-Detection Benchmark☆365Updated last month
- C++ library for parsing and manipulating PE files statically and dynamically.☆88Updated 2 years ago
- x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code☆206Updated 4 years ago
- 🪝 Various EPT hook detection approaches☆128Updated 2 months ago
- ☆153Updated 5 years ago
- a minimalistic windows hypervisor for amd processors☆126Updated 3 years ago
- Vectored Exception Handling Hooking Class☆164Updated 6 years ago
- Proof of concept on how to bypass some limitations of a manual mapped driver☆173Updated 4 years ago
- Collection of hypervisor detections☆270Updated last year
- Kernel LdrLoadDll injector☆265Updated 6 years ago
- A mapper that maps shellcode into loaded large page drivers☆299Updated 3 years ago
- load unsigned kernel-driver by patching dse in 248 lines☆134Updated last year
- Easy Anti PatchGuard☆223Updated 4 years ago
- Simple x86/x86_64 instruction level obfuscator based on a basic SBI engine☆274Updated 2 years ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆357Updated 3 years ago
- ☆216Updated 2 years ago
- Tutorial & a blog post that demonstrate how to code a Windows driver to inject a custom DLL into all running processes. I coded it from s…☆136Updated 4 years ago
- ☆250Updated last month