my patches for linux kernel to spoof rdtsc and make vm exit undetected
☆271Jul 7, 2024Updated last year
Alternatives and similar repositories for RDTSC-KVM-Handler
Users that are interested in RDTSC-KVM-Handler are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- PoC TSC offsetting in KVM☆135Oct 31, 2020Updated 5 years ago
- A patch to hide qemu itself, bypass mhyprot,EAC,nProtect / VMProtect,VProtect, Themida, Enigma Protector,Safegine Shielden☆1,429Updated this week
- Kernel module to evade KVM's detection through RDTSC timer☆40Nov 15, 2021Updated 4 years ago
- ☆16Oct 7, 2020Updated 5 years ago
- ☆35Aug 7, 2020Updated 5 years ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- physical memory introspection framework☆974Updated this week
- An example code of CiGetCertPublisherName☆16Mar 24, 2022Updated 4 years ago
- A library to read/write memory to Windows on KVM☆280Sep 11, 2020Updated 5 years ago
- RDTSC Thingy☆22Jan 30, 2021Updated 5 years ago
- Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.☆150Feb 12, 2022Updated 4 years ago
- Automated Linux virtualization scripts☆645Updated this week
- memflow command line interface☆18Sep 10, 2024Updated last year
- A PoC for requesting HWIDs directly from hardware, skipping any potential hooks or OS support.☆87Mar 16, 2021Updated 5 years ago
- QEMU patched to avoid detection from various anticheats such as Battleye/EAC☆88Jun 9, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- memflow plugin for ReClass.NET☆24Jul 29, 2024Updated last year
- 🪝 Various EPT hook detection approaches☆145Feb 22, 2026Updated last month
- Browse Page Tables on Windows (Page Table Viewer)☆237Apr 2, 2022Updated 4 years ago
- PoC that measures how long it takes the CPU to execute the CPUID instruction and reports if it suspects a VM. Works on both Windows and L…☆26Sep 11, 2020Updated 5 years ago
- Disks for DMA☆147Apr 28, 2021Updated 4 years ago
- Detect removed thread from PspCidTable.☆75Mar 18, 2022Updated 4 years ago
- base for testing☆186Sep 28, 2024Updated last year
- An x64 page table iterator written in C++ as a kernel mode windows driver.☆120May 25, 2021Updated 4 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆68Aug 11, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that…☆3,879Jun 21, 2024Updated last year
- Discarded Section Manual Map☆67Jun 18, 2020Updated 5 years ago
- Lightweight type-1 hypervisor offering a foundation for building advanced security-focused functionality.☆286Feb 16, 2026Updated 2 months ago
- Old way for blocking NMI interrupts☆29Sep 6, 2022Updated 3 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆121Feb 8, 2022Updated 4 years ago
- Combination of different utilities, have fun!☆224Feb 5, 2024Updated 2 years ago
- Emulate Drivers in RING3 with self context mapping or unicorn☆364Aug 18, 2022Updated 3 years ago
- ☆28Nov 20, 2017Updated 8 years ago
- ☆430Jan 1, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Simple EFI runtime driver that hooks GetVariable function and returns data expected by Windows to make it think that it's running with se…☆217Oct 1, 2021Updated 4 years ago
- A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe☆75Aug 16, 2023Updated 2 years ago
- ☆34Apr 11, 2023Updated 3 years ago
- The Grimoire Hypervisor solution for x86 Processors with experimental nested virtualization support. Remastering with Rust in progress.☆622Feb 24, 2026Updated last month
- A patch to hide PVE itself☆479Mar 6, 2024Updated 2 years ago
- function executor based on unicorn and memflow☆93Jul 24, 2025Updated 8 months ago
- A way to detect DBI frameworks, Debuggers and VMs.☆24Nov 17, 2020Updated 5 years ago