Alternatives and similar repositories for kmdf-keylogger

Users that are interested in kmdf-keylogger are comparing it to the libraries listed below

• NtRaiseHardError / AntiHook
  PoC designed to evade userland-hooking anti-virus.
  ☆90Updated 6 years ago
• eLoopWoo / zwhawk
  A kernel rootkit with remote command and control interface for windows
  ☆110Updated 7 years ago
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆74Updated 4 years ago
• SamLarenN / PePacker
  Simple PE Packer Which Encrypts .text Section
  ☆50Updated 8 years ago
• bytecode77 / slui-file-handler-hijack-privilege-escalation
  Slui File Handler Hijack UAC Bypass Local Privilege Escalation
  ☆95Updated 3 months ago
• AzAgarampur / byeintegrity3-uac
  Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler
  ☆29Updated 4 years ago
• vineetgaurav / WIN_JELLY
  Windows GPU rootkit PoC by Team Jellyfish
  ☆37Updated 10 years ago
• hoangprod / DanSpecial
  Weaponizing Gigabyte driver for priv escalation and bypass PPL
  ☆69Updated 6 years ago
• DoubleLabyrinth / ProcessHollowing
  ☆37Updated 6 years ago
• reversinghub / hide-and-seek
  PoC for hiding processes from Windows Task Manager by manipulating the graphic interface
  ☆46Updated 5 years ago
• NtRaiseHardError / Anti-Delete
  Protects deletion of files with a specified extension using a kernel-mode driver.
  ☆76Updated 7 years ago
• hasherezade / hidden_bee_tools
  Parser for a custom executable formats from Hidden Bee and Rhadamanthys malware
  ☆56Updated 2 months ago
• AzAgarampur / byeintegrity-lite
  Bypass UAC by abusing shell protocol handlers
  ☆14Updated 4 years ago
• AzAgarampur / PsForge
  Process Hollowing demonstration & explanation
  ☆34Updated 4 years ago
• Cr4sh / DrvHide-PoC
  Hidden kernel mode code execution for bypassing modern anti-rootkits.
  ☆85Updated 14 years ago
• idan1288 / ProcessHollowing32-64
  Process Hollowing for 32 bit and 64 bit
  ☆79Updated 7 years ago
• FuzzySecurity / Driver-Template
  Bare template for a Kernel Mode Driver
  ☆51Updated 5 years ago
• NtRaiseHardError / UnRunPE
  PoC for detecting and dumping process hollowing code injection
  ☆52Updated 6 years ago
• aaaddress1 / Win-Exploit-Inject
  PoC for DEF CON 26: Playing Malware Injection with Exploit thoughts
  ☆25Updated 7 years ago
• MalwareTech / ZombifyProcess
  Inject code into a legitimate process
  ☆145Updated 10 years ago
• 3gstudent / HiddenNtRegistry
  Use NT Native Registry API to create a registry that normal user can not query.
  ☆94Updated 7 years ago
• XaFF-XaFF / MBR-Overwrite-with-custom-message
  Overwrite MBR and add own custom message
  ☆16Updated 5 years ago
• jackullrich / TRunPE
  A modified RunPE (process hollowing) technique avoiding the usage of SetThreadContext by appending a TLS section which calls the original…
  ☆98Updated 6 years ago
• uvbs / NT-APC-Injector
  APC DLL Injector with NtQueueApcThread and wake up thread support
  ☆47Updated 8 years ago
• MandConsultingGroup / ring3-kit
  Hides Process From Task Manager Using NT API Hooking (NtQuerySystemInformation)
  ☆80Updated 2 years ago
• redplait / pexphide
  PoC for hiding PE exports
  ☆67Updated 4 years ago
• SouhailHammou / Exploits
  Exploits I've authored
  ☆60Updated 6 years ago
• d35ha / PEReflectiveInjection
  Remote PE reflective injection with a simple reflective loader
  ☆32Updated 6 years ago
• SouhailHammou / Drivers
  Windows Drivers
  ☆98Updated 6 years ago
• proxytype / Hide-FS
  Inject dll to explorer.exe and hide file from process.
  ☆21Updated 4 years ago