Alternatives and similar repositories for kmdf-keylogger

Users that are interested in kmdf-keylogger are comparing it to the libraries listed below

• NtRaiseHardError / AntiHook
  PoC designed to evade userland-hooking anti-virus.
  ☆89Updated 6 years ago
• eLoopWoo / zwhawk
  A kernel rootkit with remote command and control interface for windows
  ☆109Updated 7 years ago
• NtRaiseHardError / Anti-Delete
  Protects deletion of files with a specified extension using a kernel-mode driver.
  ☆76Updated 7 years ago
• SamLarenN / PePacker
  Simple PE Packer Which Encrypts .text Section
  ☆50Updated 8 years ago
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆71Updated 4 years ago
• AzAgarampur / byeintegrity3-uac
  Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler
  ☆29Updated 4 years ago
• redplait / pexphide
  PoC for hiding PE exports
  ☆67Updated 4 years ago
• Jb05s / Exploit-Dev-C
  ☆22Updated 5 years ago
• AzAgarampur / byeintegrity-lite
  Bypass UAC by abusing shell protocol handlers
  ☆14Updated 4 years ago
• hasherezade / hidden_bee_tools
  Parser for a custom executable formats from Hidden Bee and Rhadamanthys malware
  ☆52Updated this week
• AzAgarampur / PsForge
  Process Hollowing demonstration & explanation
  ☆35Updated 4 years ago
• hoangprod / DanSpecial
  Weaponizing Gigabyte driver for priv escalation and bypass PPL
  ☆68Updated 6 years ago
• SouhailHammou / Exploits
  Exploits I've authored
  ☆60Updated 5 years ago
• idan1288 / ProcessHollowing32-64
  Process Hollowing for 32 bit and 64 bit
  ☆79Updated 7 years ago
• uvbs / NT-APC-Injector
  APC DLL Injector with NtQueueApcThread and wake up thread support
  ☆47Updated 7 years ago
• vineetgaurav / WIN_JELLY
  Windows GPU rootkit PoC by Team Jellyfish
  ☆36Updated 10 years ago
• NtRaiseHardError / UnRunPE
  PoC for detecting and dumping process hollowing code injection
  ☆51Updated 6 years ago
• 86hh / DreamLoader
  Simple 32/64-bit PEs loader.
  ☆138Updated 6 years ago
• bytecode77 / slui-file-handler-hijack-privilege-escalation
  Slui File Handler Hijack UAC Bypass Local Privilege Escalation
  ☆93Updated last month
• killswitch-GUI / HotLoad-Driver
  C++
  ☆80Updated 8 years ago
• repnz / windows-inspector
  A driver to intercept low level windows events
  ☆63Updated 5 years ago
• hasherezade / process_chameleon
  A process overwriting its own PEB to make an illusion that it has been loaded from a different path.
  ☆96Updated 4 years ago
• SouhailHammou / Drivers
  Windows Drivers
  ☆99Updated 6 years ago
• XShar / Super_Hide_String
  Скрытие строки от отладчиков и декомпиляторов
  ☆51Updated 5 years ago
• MalwareTech / ZombifyProcess
  Inject code into a legitimate process
  ☆144Updated 10 years ago
• zhuhuibeishadiao / exploit-RemoteDesktopServerDriver
  exploit termdd.sys(support kb4499175)
  ☆59Updated 6 years ago
• Jyang772 / HideProcessHookMDL
  A simple rootkit to hide a process
  ☆46Updated 11 years ago
• Lima-X / Win32.Nebula
  A packed & protected Module Loader and more, for 64-bit Windows
  ☆30Updated 4 years ago
• connormcgarr / Kernel-Escalation-of-Privileges-Payloads
  NT AUTHORITY\SYSTEM
  ☆38Updated 5 years ago
• MandConsultingGroup / ring3-kit
  Hides Process From Task Manager Using NT API Hooking (NtQuerySystemInformation)
  ☆77Updated 2 years ago