POC about how to detect windows kernel debug by pool tag.
☆13Nov 29, 2023Updated 2 years ago
Alternatives and similar repositories for POC-AntiKernelDebug
Users that are interested in POC-AntiKernelDebug are comparing it to the libraries listed below
Sorting:
- How Meltdown and Spectre haunt Anti-Cheat: DVRT details☆22Aug 21, 2024Updated last year
- ☆15May 2, 2024Updated last year
- A binary-to-LLVM IR lifter that leverages Ghidra's IR and analysis☆13Jun 4, 2023Updated 2 years ago
- A portable header only library extending the C++20 STL.☆96Feb 23, 2026Updated 3 weeks ago
- This is similar to GdrvLoader but it works on EAC (& BE but same for GdrvLoader) with included gdrv.sys (cert)☆33Dec 8, 2025Updated 3 months ago
- A large collection of 32bit and 64bit PE files useful for verifying the correctness of bin2bin transformations☆73Aug 2, 2024Updated last year
- ☆16Oct 31, 2021Updated 4 years ago
- A simple python script to check evil Visual Studio projects☆21Oct 13, 2023Updated 2 years ago
- VM for crackmes, just for fun☆14Aug 3, 2023Updated 2 years ago
- A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)☆160Sep 3, 2023Updated 2 years ago
- Competition Infrastructure Management☆13Oct 16, 2025Updated 5 months ago
- This repo contains Microsoft compiler-tests to validate Windows platform particulars.☆28Jun 13, 2023Updated 2 years ago
- ☆25May 27, 2025Updated 9 months ago
- PDB Rewriting Rust Library☆28Apr 26, 2024Updated last year
- ☆37Nov 8, 2024Updated last year
- A demonstration of hooking into the VMProtect-2 virtual machine☆24Nov 9, 2023Updated 2 years ago
- Mixed Boolean-Arithmetic☆100Aug 24, 2025Updated 6 months ago
- How to use PiDqSerializationWrite. Introduces how to safely read and write from mapped driver☆26May 29, 2023Updated 2 years ago
- Translates a high-level declarative description of a simplification rule for Ghidra's decompiler into the C++ code that is required for t…☆15Jan 17, 2023Updated 3 years ago
- High-speed lossless data compression of 16 to 512 bytes--get better average compression than QuickLZ for 512-byte blocks. td512 maintains…☆27Feb 14, 2022Updated 4 years ago
- Mixed Boolean-Arithmetic in Rust for WebAssembly☆30Jun 14, 2025Updated 9 months ago
- Kernel driver for detecting Intel VT-x hypervisors.☆202Jul 11, 2023Updated 2 years ago
- x86-64 Automated test data generator☆26Aug 18, 2025Updated 7 months ago
- x86-64 virtualizing obfuscator written in Rust☆78Nov 16, 2023Updated 2 years ago
- A Windows Direct Syscall Library☆53Apr 23, 2025Updated 10 months ago
- Statistics from our binary transformation framework☆12Jan 16, 2025Updated last year
- Lisp in kernel-mode because it was so seductive☆13Jul 17, 2020Updated 5 years ago
- x86-64 code/pe virtualizer☆206Dec 2, 2024Updated last year
- A tiny framebuffer image viewer☆13May 30, 2015Updated 10 years ago
- PEIM (UEFI) bootkit targeting OVMF (EDK2)☆41Nov 28, 2023Updated 2 years ago
- Diablo is a retargetable link-time binary rewriting framework☆82Dec 21, 2020Updated 5 years ago
- Efficient general mixed boolean-arithmetic (MBA) simplifier☆126Updated this week
- White-box Design and Analysis kit☆24May 22, 2023Updated 2 years ago
- A PE32/PE32+ parser written in MASM32☆13Feb 24, 2016Updated 10 years ago
- A PoC application that detects unauthorized external access to select memory regions.☆34Sep 11, 2024Updated last year
- Binary rewriter for 64-bit PE files.☆102Feb 5, 2024Updated 2 years ago
- ☆30May 21, 2021Updated 4 years ago
- Virtualization Simply Code☆25May 13, 2022Updated 3 years ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated 11 months ago