bi-zone / rdtsc-checkvirt-pocLinks
Virtualization detection through speculative execution PoCs and papers
☆68Updated 7 years ago
Alternatives and similar repositories for rdtsc-checkvirt-poc
Users that are interested in rdtsc-checkvirt-poc are comparing it to the libraries listed below
Sorting:
- DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10☆53Updated last year
- This is a simple driver with x64 inline assembly☆57Updated 5 years ago
- reverse engineering extension plugin for windbg☆119Updated 5 years ago
- Intermediate x86 instruction representation for use in obfuscation/deobfuscation.☆54Updated 2 months ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆78Updated 10 years ago
- VMCS Auditor provides almost all of Intel's VMCS Layout checklist based on Bochs Emulator.☆31Updated 6 years ago
- Automatically exported from code.google.com/p/virtdbg☆99Updated 10 years ago
- a binary x86win32 code obfuscator using virtual machine☆32Updated 8 years ago
- MSI NTIOLib/WinIO Local Privilege Escalation exploit☆95Updated 9 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆58Updated 9 years ago
- Elevation of privilege detector based on HyperPlatform☆122Updated 8 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆67Updated 5 years ago
- IDA script for vmprotect Windows Api address decoder☆51Updated 4 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆36Updated last year
- ☆72Updated 11 years ago
- Parser for Microsoft Program Database (PDB) files☆76Updated 5 years ago
- Standalone program to download PDB Symbol files for debugging without WDK☆79Updated 6 years ago
- An API Monitor based on Instrumentation☆44Updated 7 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆79Updated 14 years ago
- ☆81Updated 7 years ago
- libemu shim layer and win32 environment for Unicorn Engine☆72Updated 8 years ago
- Collection Of Anti-Debugging Tricks☆101Updated 9 years ago
- Analyze PatchGuard☆59Updated 7 years ago
- Library for kernel and user mode splicing for Windows (x86 and x64).☆64Updated 12 years ago
- Analyze and attack windows applications using dll hijacking vulnerabilities☆58Updated 6 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆32Updated 8 years ago
- WinDbg debugger extension library providing various tools to analyse, dump and fix (restore) Microsoft Portable Executable files for both…☆84Updated last year
- GetHooks is a program designed for the passive detection and monitoring of hooks from a limited user account.☆61Updated 4 years ago
- POC of sysenter x64 LSTAR MSR hook☆40Updated 11 years ago
- A C polymorphic and metamorphic engine☆71Updated 6 years ago