VollRagm / PTViewLinks
Browse Page Tables on Windows (Page Table Viewer)
☆216Updated 3 years ago
Alternatives and similar repositories for PTView
Users that are interested in PTView are comparing it to the libraries listed below
Sorting:
- Kernel driver for detecting Intel VT-x hypervisors.☆192Updated 2 years ago
- Load your driver like win32k.sys☆256Updated 3 years ago
- Demo proof of concept for shadow regions, and implementation of HyperDeceit.☆300Updated 2 years ago
- x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code☆206Updated 4 years ago
- A proof of concept demonstrating instrumentation callbacks on Windows 10 21h1 with a TLS variable to ensure all syscalls are caught.☆142Updated 3 years ago
- a minimalistic windows hypervisor for amd processors☆126Updated 3 years ago
- ☆147Updated 4 years ago
- Hooking Windows' exception dispatcher to protect process's PML4☆203Updated 9 months ago
- Vectored Exception Handling Hooking Class☆165Updated 6 years ago
- Analyze patches in a process☆257Updated 4 years ago
- Ghetto user mode emulation of Windows kernel drivers.☆149Updated last year
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆236Updated 11 months ago
- Easy Anti PatchGuard☆221Updated 4 years ago
- C++ library for parsing and manipulating PE files statically and dynamically.☆88Updated 2 years ago
- Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.☆147Updated 3 years ago
- ☆216Updated 2 years ago
- Bypassing PatchGuard on modern x64 systems☆265Updated 2 years ago
- ☆154Updated 5 years ago
- memory introspection and reverse engineering hypervisor powered by leveraging Hyper-V☆352Updated this week
- Kernel LdrLoadDll injector☆264Updated 7 years ago
- Proof of concept on how to bypass some limitations of a manual mapped driver☆172Updated 5 years ago
- Debugger Anti-Detection Benchmark☆368Updated 2 months ago
- 🪝 Various EPT hook detection approaches☆129Updated 2 months ago
- Elevate a process to be a protected process☆150Updated 6 years ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆359Updated 3 years ago
- A mapper that maps shellcode into loaded large page drivers☆306Updated 3 years ago
- x86 PE Mutator☆226Updated 2 years ago
- This project migrated to https://github.com/backengineering/llvm-msvc☆144Updated 2 years ago
- Tutorial & a blog post that demonstrate how to code a Windows driver to inject a custom DLL into all running processes. I coded it from s…☆136Updated 4 years ago
- Simple x86/x86_64 instruction level obfuscator based on a basic SBI engine☆274Updated 2 years ago