Alternatives and similar repositories for kmdf-keylogger

Users that are interested in kmdf-keylogger are comparing it to the libraries listed below

• armudgal / keylogger

  View on GitHub
  A simple C program acting as Keylogger.
  ☆18Apr 15, 2018Updated 7 years ago
• SHA-MRIZ / FsMinfilterHooking

  View on GitHub
  ☆33Dec 22, 2020Updated 5 years ago
• 0x36 / BinTrace

  View on GitHub
  Tracing and parsing an executing binary file
  ☆29Aug 7, 2015Updated 10 years ago
• loneicewolf / DUQU

  View on GitHub
  DUQU MALWARE SOURCE + BINARY + More coming
  ☆12Feb 6, 2023Updated 3 years ago
• keowu / winsystemprogramming

  View on GitHub
  Learn Winapi in this Repo with examples, to understand its abstraction in reverse engineering for Windows.
  ☆11Aug 8, 2022Updated 3 years ago
• Zhuagenborn / Windows-x86-Debugger

  View on GitHub
  🐞 A simple Windows x86 debugging framework written in C++20 that supports software breakpoints and hardware breakpoints. It can be used …
  ☆13Mar 30, 2025Updated 10 months ago
• Biswa96 / pnconnect

  View on GitHub
  Experiments with 9P protocol file server in Windows 10 for fun
  ☆13Jun 8, 2019Updated 6 years ago
• sighook / wxp78key

  View on GitHub
  Tiny keylogger for Win XP/Vista/7/8 with ftp upload.
  ☆14Apr 17, 2022Updated 3 years ago
• andreafioraldi / angr-win64-wheels

  View on GitHub
  prebuild angr wheels for Windows on x86_64
  ☆15Jul 21, 2018Updated 7 years ago
• alal4465 / Practical-Reverse-Engineering-Solutions

  View on GitHub
  Some drivers I've written while solving exercises from Practical Reverse Engineering
  ☆15Jan 9, 2022Updated 4 years ago
• JustasMasiulis / process_handle

  View on GitHub
  A cross platform, leak free system handle wrapper
  ☆19Oct 24, 2017Updated 8 years ago
• D4stiny / Veracrypt-Password-Extractor

  View on GitHub
  A proof-of-concept DLL that prints out the password a user enters into Veracrypt while decrypting a volume.
  ☆15Oct 26, 2018Updated 7 years ago
• eternalklaus / EternalAntirootkit

  View on GitHub
  Anti-rootkit works as a Windows system driver.
  ☆13Mar 14, 2022Updated 3 years ago
• Rhydon1337 / windows-kernel-development

  View on GitHub
  Setup for windows kernel development (development, debugging automation and compiling)
  ☆17Jan 30, 2021Updated 5 years ago
• vxcall / kur

  View on GitHub
  a tiny code that performs kernel-mode read/write using CVE-2023-38817.
  ☆18Mar 28, 2025Updated 10 months ago
• aelth / dementia-forensics

  View on GitHub
  Proof of concept memory anti-forensic toolkit designed for hiding various artifacts inside the memory dump during memory acquisition on M…
  ☆14Oct 2, 2019Updated 6 years ago
• gianlucag / Keylogger

  View on GitHub
  Minimal keylogger written in C, remote upload of keystrokes and screen snapshots!
  ☆27Nov 17, 2017Updated 8 years ago
• Flawww / NtSyscaller

  View on GitHub
  Manually perform syscalls without going through any external API or DLL.
  ☆19Apr 19, 2023Updated 2 years ago
• alfarom256 / MinifilterResearch

  View on GitHub
  ☆16Oct 31, 2022Updated 3 years ago
• viorelyo / Procmonel

  View on GitHub
  Procmonel is Procmon like monitoring system implemented using Microsoft WDK
  ☆12Dec 25, 2019Updated 6 years ago
• Wall1e / CVE-2024-21626-POC

  View on GitHub
  ☆14Feb 2, 2024Updated 2 years ago
• jbaines-r7 / dellicious

  View on GitHub
  Enabled / Disable LSA Protection via BYOVD
  ☆81Dec 8, 2021Updated 4 years ago
• LaresLLC / AzureTokenExtractor

  View on GitHub
  Extracts Azure authentication tokens from PowerShell process minidumps.
  ☆24May 20, 2023Updated 2 years ago
• Xyrem / Arbitrary-Physical-Memory-RW

  View on GitHub
  ☆38Nov 30, 2022Updated 3 years ago
• vysecurity / Office365TenantsList

  View on GitHub
  Office365 Tenants List
  ☆16Jun 12, 2018Updated 7 years ago
• blaquee / APCHook

  View on GitHub
  hooking KiUserApcDispatcher
  ☆25Apr 3, 2017Updated 8 years ago
• Mattiwatti / WinMain-is-usually-a-function

  View on GitHub
  Windows NT port of 'Main is usually a function. So then when is it not?'
  ☆27Mar 11, 2024Updated last year
• blogresponder / Realtek-rtkio64-Windows-driver-privilege-escalation

  View on GitHub
  A PoC of a privilege escalation vulnerability in the Realtek rtkio64 Windows driver.
  ☆20Jul 6, 2020Updated 5 years ago
• S12cybersecurity / PrivilegeEscalationClass

  View on GitHub
  C++ Privilege Escalation Class to execute Process As Admin from User and Process as NT AUTHORITY SYSTEM from Admin
  ☆23Aug 21, 2023Updated 2 years ago
• XaFF-XaFF / MBR-Overwrite-with-custom-message

  View on GitHub
  Overwrite MBR and add own custom message
  ☆16Apr 1, 2020Updated 5 years ago
• Rhydon1337 / windows-kernel-process-protector

  View on GitHub
  Protect a process from code injection, termination and hooking
  ☆48Jul 16, 2021Updated 4 years ago
• Rhydon1337 / linux-kernel-shadow-ssh

  View on GitHub
  Hiding SSH public keys in SSH server using a kernel agent
  ☆23Dec 24, 2020Updated 5 years ago
• armvirus / DriverDllFInder

  View on GitHub
  search for a driver/dll module that has a wanted section bigger than the size of your image
  ☆20Aug 14, 2021Updated 4 years ago
• abysdom / bus-filter-framework

  View on GitHub
  A framework for Windows KMDF-based upper filter drivers to behave as bus filters. You don't need to write WDM drivers any more!
  ☆24Jul 26, 2025Updated 6 months ago
• IlayTheVuln / Kernelious-Rootkit

  View on GitHub
  a dkom rootkit that targets windows x64 systems. the rootkit hooks and edits criticl memory sections in order to hide different resources…
  ☆18Jul 5, 2023Updated 2 years ago
• huafuge / Game-Cheating

  View on GitHub
  热门网络游戏辅助开发教程
  ☆19May 27, 2021Updated 4 years ago
• csurage / Rootkit

  View on GitHub
  Windows Malware
  ☆39Apr 17, 2013Updated 12 years ago
• S12cybersecurity / Admin2Sys

  View on GitHub
  Admin2Sys it's a C++ malware to escalate privileges from Administrator account to NT AUTORITY SYSTEM
  ☆62May 1, 2023Updated 2 years ago
• kkent030315 / EvilHooker

  View on GitHub
  Function hooks in Windows NT Kernel
  ☆27Oct 13, 2020Updated 5 years ago