VollRagm / PTViewLinks
Browse Page Tables on Windows (Page Table Viewer)
☆213Updated 3 years ago
Alternatives and similar repositories for PTView
Users that are interested in PTView are comparing it to the libraries listed below
Sorting:
- ☆148Updated 4 years ago
- Kernel driver for detecting Intel VT-x hypervisors.☆189Updated 2 years ago
- A proof of concept demonstrating instrumentation callbacks on Windows 10 21h1 with a TLS variable to ensure all syscalls are caught.☆137Updated 3 years ago
- Load your driver like win32k.sys☆254Updated 3 years ago
- Demo proof of concept for shadow regions, and implementation of HyperDeceit.☆293Updated 2 years ago
- Analyze patches in a process☆256Updated 4 years ago
- Hooking Windows' exception dispatcher to protect process's PML4☆191Updated 7 months ago
- x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code☆206Updated 4 years ago
- A mapper that maps shellcode into loaded large page drivers☆292Updated 3 years ago
- memory introspection and reverse engineering hypervisor powered by leveraging Hyper-V☆304Updated last month
- ☆153Updated 5 years ago
- Ghetto user mode emulation of Windows kernel drivers.☆145Updated 10 months ago
- Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.☆145Updated 3 years ago
- a minimalistic windows hypervisor for amd processors☆123Updated 3 years ago
- nmi stackwalking + module verification☆131Updated last year
- ☆213Updated 2 years ago
- C++ library for parsing and manipulating PE files statically and dynamically.☆88Updated last year
- Kernel LdrLoadDll injector☆262Updated 6 years ago
- Vectored Exception Handling Hooking Class☆163Updated 6 years ago
- Proof of concept on how to bypass some limitations of a manual mapped driver☆173Updated 4 years ago
- Easy Anti PatchGuard☆224Updated 4 years ago
- Debugger Anti-Detection Benchmark☆354Updated last week
- This project migrated to https://github.com/backengineering/llvm-msvc☆144Updated last year
- 🪝 Various EPT hook detection approaches☆123Updated 3 weeks ago
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆223Updated 9 months ago
- ☆186Updated 3 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆118Updated 3 years ago
- load unsigned kernel-driver by patching dse in 248 lines☆130Updated last year
- x86 PE Mutator☆225Updated 2 years ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆338Updated 3 years ago