Alternatives and similar repositories for rdtsc-checkvirt-poc

Users that are interested in rdtsc-checkvirt-poc are comparing it to the libraries listed below

• Fyyre / directntapi
  DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10
  ☆53Updated last year
• SinaKarvandi / x64-Driver-Inline-Assembly
  This is a simple driver with x64 inline assembly
  ☆57Updated 5 years ago
• imugee / pegasus
  reverse engineering extension plugin for windbg
  ☆116Updated 5 years ago
• tandasat / RemoteWriteMonitor
  A tool to help malware analysts tell that the sample is injecting code into other process.
  ☆78Updated 9 years ago
• tandasat / EopMon
  Elevation of privilege detector based on HyperPlatform
  ☆122Updated 8 years ago
• upring / virtdbg
  Automatically exported from code.google.com/p/virtdbg
  ☆98Updated 10 years ago
• rwfpl / rewolf-msi-exploit
  MSI NTIOLib/WinIO Local Privilege Escalation exploit
  ☆95Updated 8 years ago
• hfiref0x / ROCALL
  ReactOS x86-32 syscall fuzzer
  ☆55Updated last month
• BreakingMalwareResearch / CFGExceptions
  Adding exceptions to Microsoft's Control Flow Guard (CFG)
  ☆58Updated 9 years ago
• nlog2n / x86obfuscator
  a binary x86win32 code obfuscator using virtual machine
  ☆32Updated 8 years ago
• ajkhoury / Windbg2Struct
  Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure
  ☆36Updated last year
• Cr4sh / PTBypass-PoC
  Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.
  ☆79Updated 14 years ago
• Biswa96 / PDBDownloader
  Standalone program to download PDB Symbol files for debugging without WDK
  ☆79Updated 6 years ago
• georgenicolaou / HeavenInjector
  Simple proof of concept code for injecting libraries on 64bit processes from a 32bit process
  ☆96Updated 6 years ago
• hfiref0x / Stryker
  Multi-purpose proof-of-concept tool based on CPU-Z CVE-2017-15303
  ☆110Updated 7 years ago
• arizvisa / syringe
  Random tools and things for creating+injecting complex organisms into a process on both the posix and windows platforms. Includes support…
  ☆41Updated 3 weeks ago
• peperunas / pasticciotto
  Polymorphic VM and PoliCTF '17 reversing challenge.
  ☆73Updated 10 months ago
• yardenshafir / KernelDataStructureFinder
  Driver and WinDBG scripts to dump information about all resources and lookaside lists
  ☆68Updated 5 years ago
• SinaKarvandi / VMCS-Auditor
  VMCS Auditor provides almost all of Intel's VMCS Layout checklist based on Bochs Emulator.
  ☆32Updated 6 years ago
• idkwim / frookSINATRA
  POC of sysenter x64 LSTAR MSR hook
  ☆40Updated 11 years ago
• arizvisa / ndk
  A local copy of Alex Ionescu's seemingly abandoned native-nt-toolkit project containing knowledge inherited from the ReactOS project.
  ☆54Updated 5 years ago
• redplait / armpatched
  clone of armadillo patched for windows
  ☆47Updated 9 months ago
• vol4ok / libsplice
  Library for kernel and user mode splicing for Windows (x86 and x64).
  ☆64Updated 12 years ago
• saweol / vwaad
  IDA script for vmprotect Windows Api address decoder
  ☆51Updated 4 years ago
• pstolarz / dumpext
  WinDbg debugger extension library providing various tools to analyse, dump and fix (restore) Microsoft Portable Executable files for both…
  ☆84Updated 11 months ago
• x64dbg / InterObfu
  Intermediate x86 instruction representation for use in obfuscation/deobfuscation.
  ☆53Updated last month
• SinaKarvandi / Pinitor
  An API Monitor based on Instrumentation
  ☆43Updated 7 years ago
• andrew-boyarshin / LoaderWatch
  Windows 10 PE image loader (LDR) NTDLL component toolbox
  ☆49Updated 5 years ago
• KelvinMsft / Notes
  Open Course for diving security internal
  ☆51Updated 5 years ago
• shareef12 / libpdb
  Parser for Microsoft Program Database (PDB) files
  ☆76Updated 5 years ago