POC about how to detect windows kernel debug by pool tag.
☆13Nov 29, 2023Updated 2 years ago
Alternatives and similar repositories for POC-AntiKernelDebug
Users that are interested in POC-AntiKernelDebug are comparing it to the libraries listed below
Sorting:
- How Meltdown and Spectre haunt Anti-Cheat: DVRT details☆22Aug 21, 2024Updated last year
- ☆16May 2, 2024Updated last year
- A binary-to-LLVM IR lifter that leverages Ghidra's IR and analysis☆13Jun 4, 2023Updated 2 years ago
- Translates a high-level declarative description of a simplification rule for Ghidra's decompiler into the C++ code that is required for t…☆15Jan 17, 2023Updated 3 years ago
- VM for crackmes, just for fun☆13Aug 3, 2023Updated 2 years ago
- A portable header only library extending the C++20 STL.☆96Updated this week
- A large collection of 32bit and 64bit PE files useful for verifying the correctness of bin2bin transformations☆71Aug 2, 2024Updated last year
- A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)☆149Sep 3, 2023Updated 2 years ago
- A simple python script to check evil Visual Studio projects☆21Oct 13, 2023Updated 2 years ago
- A Windows Direct Syscall Library☆52Apr 23, 2025Updated 10 months ago
- A demonstration of hooking into the VMProtect-2 virtual machine☆24Nov 9, 2023Updated 2 years ago
- ☆16Oct 31, 2021Updated 4 years ago
- Mixed Boolean-Arithmetic☆99Aug 24, 2025Updated 6 months ago
- x86-64 Automated test data generator☆26Aug 18, 2025Updated 6 months ago
- How to use PiDqSerializationWrite. Introduces how to safely read and write from mapped driver☆26May 29, 2023Updated 2 years ago
- PDB Rewriting Rust Library☆27Apr 26, 2024Updated last year
- DMA PE (Portable Executable) Dumper with DTB patching capabilities.☆54Mar 28, 2025Updated 10 months ago
- White-box Design and Analysis kit☆24May 22, 2023Updated 2 years ago
- Virtualization Simply Code☆25May 13, 2022Updated 3 years ago
- High-speed lossless data compression of 16 to 512 bytes--get better average compression than QuickLZ for 512-byte blocks. td512 maintains…☆27Feb 14, 2022Updated 4 years ago
- This repo contains Microsoft compiler-tests to validate Windows platform particulars.☆28Jun 13, 2023Updated 2 years ago
- Tool for generating C++ classes and json from PDB, DWARF and ELF symbols (Work in progress)☆53Nov 16, 2018Updated 7 years ago
- ☆30May 21, 2021Updated 4 years ago
- ☆25May 27, 2025Updated 9 months ago
- A PoC application that detects unauthorized external access to select memory regions.☆34Sep 11, 2024Updated last year
- PEIM (UEFI) bootkit targeting OVMF (EDK2)☆41Nov 28, 2023Updated 2 years ago
- ☆36Nov 8, 2024Updated last year
- Lightweight PDB symbol parser and resolver☆28Oct 28, 2024Updated last year
- Mixed Boolean-Arithmetic in Rust for WebAssembly☆30Jun 14, 2025Updated 8 months ago
- Efficient general mixed boolean-arithmetic (MBA) simplifier☆122Updated this week
- A C++ container-like data structure for storing a vector of bits with fast appending on both sides and fast insertion in the middle, all …☆26Apr 26, 2022Updated 3 years ago
- Visual Studio Project example for using Microsoft's STL in WDM (Windows Kernel-mode Driver)☆25Jun 22, 2021Updated 4 years ago
- An LLVM pass to compress code by identifying and extracting recurrent program slices.☆32Oct 21, 2025Updated 4 months ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated 10 months ago
- Independent hikari☆42Feb 3, 2026Updated 3 weeks ago
- This plugin serves as a bridge between Binary Ninja and Ghidra's disassembler.☆36Jun 27, 2022Updated 3 years ago
- x86-64 code/pe virtualizer☆206Dec 2, 2024Updated last year
- Ghidra P-Code emulation and static LLVM lifting in Python☆38Mar 26, 2022Updated 3 years ago
- Kernel driver for detecting Intel VT-x hypervisors.☆197Jul 11, 2023Updated 2 years ago