Alternatives and similar repositories for apphost-extract:

Users that are interested in apphost-extract are comparing it to the libraries listed below

• 1hAck-0 / zeroimport
  ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel drive…
  ☆48Updated 2 years ago
• xu-Wan / HypercallPageHook
  POC Hook of nt!HvcallCodeVa
  ☆51Updated 2 years ago
• KiFilterFiberContext / VMP3-Disasm
  Experimental disassembler for x86 binaries virtualized by VMProtect 3
  ☆95Updated 2 years ago
• samshine / ScyllaHideDetector2
  Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.
  ☆25Updated 5 years ago
• buzzer-re / BulletTrain
  A manual PE mapping implementation, aka reflective loader
  ☆19Updated 2 years ago
• Ahora57 / Unabomber
  Improved VMP Idea(detect anti-anti-debug tools by bug)
  ☆43Updated last year
• Washi1337 / ProxyObjects
  A Proof-of-Concept implementation for Proxy Object Obfuscation in .NET
  ☆47Updated 2 years ago
• 0x410c / ClrDumper
  Dump .net assembly from a native loader which uses ClrCreateinstance
  ☆57Updated 2 years ago
• DErDYAST1R / SilentFunctionCaller
  Allows for same-file KernelMode function execution using Encrypted addresses of Functions
  ☆34Updated 6 months ago
• kkent030315 / kernel_callbacks
  Bypasses for Windows kernel callbacks PatchGuard protection
  ☆43Updated 3 years ago
• lennyRBLX / ret_addr_spoofer
  Compileable POC of namazso's x64 return address spoofer.
  ☆52Updated 4 years ago
• kkent030315 / anyvtop
  x64 Windows implementation of virtual-address to physical-address translation
  ☆41Updated 3 years ago
• Oliver-1-1 / EtwKeyboardDetection
  ☆30Updated 7 months ago
• backengineering / msrexec
  Elevate arbitrary MSR writes to kernel execution.
  ☆34Updated last year
• rhotav / JITK
  JITK - JIT Killer is hooker for clrjit
  ☆29Updated 2 years ago
• nelfo / PGHooker
  PAGE_GUARD based hooking library
  ☆43Updated 2 years ago
• Vasie1337 / sharedsection-driver
  Driver shared section communication
  ☆50Updated last month
• ByteWhite1x1 / PatchGuardResearch
  Bypassing kernel patch protection runtime
  ☆20Updated 2 years ago
• sunwm518 / VMProtect-3-5-DEvirt
  VMProtect, VMP, Devirter, 3,5
  ☆106Updated 2 years ago
• yubie-re / ida-jm-xorstr-decrypt-plugin
  Attempts to decrypt JM Xorstr in some x64 binaries
  ☆54Updated 2 years ago
• keowu / birosca
  A Dynamic Study Vmprotect 1.x-1.9X Unpacking Toolkit, Recovery OEP, FIX PE, IAT and bypass protection with custom Loader and interceptor …
  ☆32Updated last year
• illegal-instruction-co / ThreadIn
  Freeze target threads (external - internal ) by avoiding SuspendThread detections. Or access registers from start address.
  ☆32Updated last year
• CabboShiba / VMPStrings-Decrypter
  Decrypt VMProtect (.NET) obfuscated strings. Made by Cabbo with love.
  ☆25Updated 2 years ago
• BeneficialCode / KReClassEx
  Kernel ReClassEx
  ☆61Updated last year
• miketestz / ScyllaHide_VMPHeavensgateBypass
  Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide
  ☆21Updated last year
• Shhoya / MutantKiller
  VMP Mutation API Fix
  ☆41Updated 3 years ago
• VollRagm / ShellcodeBakery
  A simple tool to assemble shellcode ready to be copy-pasted into code
  ☆69Updated 2 years ago
• generic-trash / themdem
  ☆32Updated last year
• zer0condition / GDRVLib
  Virtual and physical memory hacking library using gigabyte vulnerable driver
  ☆71Updated 2 years ago
• sh4m2hwz / devirt_vmp
  devirtualization vmprotect
  ☆62Updated 2 years ago