armvirus/VanguardTrace external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

armvirus/VanguardTrace

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/armvirus/VanguardTrace)

Close

armvirus / VanguardTraceView on GitHubMore

• External links
• Readme badge

Decrypting and intercepting encrypted imports of Vanguards Kernel Driver

☆34Feb 13, 2024Updated 2 years ago

Alternatives and similar repositories for VanguardTrace

Users that are interested in VanguardTrace are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• nulledc0de / phantom_thread

  View on GitHub
  POC kernel driver with hidden system thread
  ☆13May 14, 2024Updated last year
• paskalian / RetSpoofer

  View on GitHub
  Spoof the return address of any function call.
  ☆11Jul 21, 2024Updated last year
• Xh4H / kernel-driver-cheat-bridge

  View on GitHub
  Yet another kernel driver to bypass kernel-level anti-cheats
  ☆19May 4, 2025Updated 10 months ago
• flothrone / smm

  View on GitHub
  ☆24Aug 27, 2021Updated 4 years ago
• gmh5225 / Hook-HvlSwitchVirtualAddressSpace

  View on GitHub
  Not mine. Only for saving
  ☆26Jun 28, 2022Updated 3 years ago
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• internetangel / OffensiveD

  View on GitHub
  Utilizing DLang For Offensive Operations.
  ☆14May 29, 2025Updated 9 months ago
• DErDYAST1R / NmiCallbackBlocker

  View on GitHub
  Kernel Level NMI Callback Blocker
  ☆168Sep 27, 2025Updated 5 months ago
• 0mWindyBug / KDP-compatible-driver-loader

  View on GitHub
  KDP compatible unsigned driver loader leveraging a write primitive in one of the IOCTLs of gdrv.sys
  ☆167Jun 14, 2024Updated last year
• Aki2k / badeye

  View on GitHub
  handle elevation using bedaisy.
  ☆12Aug 17, 2020Updated 5 years ago
• armvirus / fs_driver_loader

  View on GitHub
  Load driver on boot before anti-cheats
  ☆39Feb 2, 2024Updated 2 years ago
• backengineering / vmhook

  View on GitHub
  A demonstration of hooking into the VMProtect-2 virtual machine
  ☆24Nov 9, 2023Updated 2 years ago
• redskal / obfuscatxor

  View on GitHub
  Near compile-time string obfuscation for Golang
  ☆13Oct 3, 2023Updated 2 years ago
• CR3Swapper / bluepill

  View on GitHub
  ☆15May 2, 2024Updated last year
• 1401199262 / HookHvcallCodeVa

  View on GitHub
  ☆23May 8, 2023Updated 2 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• jzy2000 / malware-anlaysis

  View on GitHub
  Reverse engineering malware samples
  ☆16Dec 3, 2021Updated 4 years ago
• 1401199262 / NMIStackWalk

  View on GitHub
  ☆73Aug 31, 2022Updated 3 years ago
• user23333 / HyperVisorInjector

  View on GitHub
  Secure Hyper-Visor Injector for Easy Anti Cheat, Battleye | that supports amd + intel | Undetected + Active updates
  ☆36Jan 17, 2023Updated 3 years ago
• mrexodia / MBR

  View on GitHub
  EDR PoC WIP LLC
  ☆10Feb 9, 2024Updated 2 years ago
• gmh5225 / recompiler-egalito

  View on GitHub
  Self-hosting binary instrumentation framework for security research
  ☆12Apr 10, 2023Updated 2 years ago
• shaddy43 / AES_Shellcode_Encryptor

  View on GitHub
  This repository contains a tool that can encrypt all type of files and give the encrypted output in the form of an encrypted shellcode. P…
  ☆16Dec 21, 2021Updated 4 years ago
• Sentient111 / StealingSignatures

  View on GitHub
  Stealing signatures from pe files
  ☆15Apr 1, 2025Updated 11 months ago
• Nou4r / Cool-Hypervisor

  View on GitHub
  A intel hypervisor, implementing many virtualization techniques
  ☆53Apr 24, 2023Updated 2 years ago
• ReCryptLLC / CVE-2022-42045

  View on GitHub
  ☆39Jun 10, 2023Updated 2 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• almounah / hardwareturningpoint

  View on GitHub
  HardwareTurningPoint, Fully Go Compatible Hardware Breakpoint
  ☆16Jan 30, 2025Updated last year
• KiExitDispatcher / Malwarebytes-Shutdowner

  View on GitHub
  Kill malawarebytes process. Can be ported to any programming language.
  ☆12Apr 21, 2025Updated 11 months ago
• armvirus / hook-scanner

  View on GitHub
  Scans all modules in target process for jmp/int3 hooks dissassembles then and follows jmps to destination.
  ☆82Nov 5, 2023Updated 2 years ago
• fvrmatteo / DeobfuscatorTest

  View on GitHub
  ☆22Mar 23, 2016Updated 10 years ago
• KiExitDispatcher / Evilbytecode-Gate

  View on GitHub
  Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…
  ☆26Apr 21, 2025Updated 11 months ago
• muturikaranja / disable-threat-tracing

  View on GitHub
  Disable threat tracing from the kernel..
  ☆14Apr 8, 2022Updated 3 years ago
• emlinhax / dse_hook

  View on GitHub
  load unsigned kernel-driver by patching dse in 248 lines
  ☆147Mar 22, 2024Updated 2 years ago
• UQ-PAC / llvm-translator

  View on GitHub
  ☆13Sep 25, 2023Updated 2 years ago
• roomyoni / arp_hooking

  View on GitHub
  Using ioctl major function swaps to "spoof" the ARP table
  ☆15Sep 11, 2024Updated last year
• NordVPN Threat Protection Pro™ • Ad
  Take your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
• ZwCreateFile / FuckDse

  View on GitHub
  Bring Your Own Vulnerable Driver for PatchGuard & Driver Signature Enforcement
  ☆15Apr 6, 2024Updated last year
• 3a1 / Elysium

  View on GitHub
  UEFI Bootkit Framework that attacks boot-time Code Integrity
  ☆120Mar 15, 2026Updated last week
• 0x1c1101 / zombie_asm

  View on GitHub
  C++ Assembler with Built-in Mutation Engine
  ☆30Sep 6, 2025Updated 6 months ago
• 3intermute / ramiel

  View on GitHub
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆97Apr 22, 2024Updated last year
• Svvayyz / Vicra

  View on GitHub
  Fluently detect security measures in software.
  ☆32Oct 26, 2025Updated 5 months ago
• kuh4it / pipedriver

  View on GitHub
  Communicate from ring-0 to ring-3 using NamedPipes.
  ☆10Feb 22, 2023Updated 3 years ago
• Nitr0-G / Rework-part-of-z3-proving

  View on GitHub
  This is the PoC of a dynamic lifter and deobfuscator with collecting trace.
  ☆37Oct 11, 2023Updated 2 years ago