Alternatives and similar repositories for unicorn-whpx

Users that are interested in unicorn-whpx are comparing it to the libraries listed below

• 1401199262 / HookHvcallCodeVa

  View on GitHub
  ☆23May 8, 2023Updated 2 years ago
• fengjixuchui / CodaPinTracer

  View on GitHub
  Lightweight WINAPI tracing with Pin
  ☆27Aug 22, 2019Updated 6 years ago
• fjqisba / VmpHelper

  View on GitHub
  an ida plugin used to decompile vmp
  ☆369Jul 2, 2024Updated last year
• therealdreg / cgaty

  View on GitHub
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆73Aug 11, 2023Updated 2 years ago
• cs1ime / sehcall

  View on GitHub
  Windows X64 mode use seh in manual mapped dll or manual mapped sys
  ☆80Oct 10, 2022Updated 3 years ago
• J0xna / Kernel-Overlay-Hider

  View on GitHub
  ☆148Jan 24, 2024Updated 2 years ago
• cbwang505 / llvmanalyzer

  View on GitHub
  笔者在一款基于LLVM编译器架构的retdec开源反编译器工具的基础上,融合了klee符号执行工具,通过符号执行(Symbolic Execution)引擎动态模拟反编译后的llvm的ir(中间指令集)运行源程序的方法,插桩所有的对x86指令集的thiscall类型函数对t…
  ☆224Apr 6, 2022Updated 3 years ago
• ddddhm1234 / TTDEngine

  View on GitHub
  ☆34Dec 15, 2023Updated 2 years ago
• stdhu / windows-kernel-pagehook

  View on GitHub
  windows kernel pagehook
  ☆41Oct 30, 2022Updated 3 years ago
• DragonQuestHero / Medusa

  View on GitHub
  Radical Windows ARK
  ☆251Apr 18, 2025Updated 9 months ago
• 0xDeva / ida-cpu-OpenRisc

  View on GitHub
  Idapro cpu for OpenRISC arch
  ☆15Mar 25, 2017Updated 8 years ago
• fjqisba / QtMetaParser

  View on GitHub
  ida plugin to parse qt meta data
  ☆84Jan 15, 2025Updated last year
• therealdreg / ida_bochs_windows

  View on GitHub
  Helper script for Windows kernel debugging with IDA Pro on native Bochs debugger (including PDB symbols)
  ☆62Aug 11, 2023Updated 2 years ago
• Kwansy98 / EasyPdb

  View on GitHub
  A very simple C++ library for download pdb, get rva of function, global variable and offset from struct.
  ☆157Mar 26, 2024Updated last year
• stonedreamforest / Tstl

  View on GitHub
  The kernel mode Standard Template Library Template
  ☆19Feb 22, 2020Updated 5 years ago
• Dy-Baby / DSEDodge-Signed-Kernel-Driver

  View on GitHub
  ☆13Aug 24, 2022Updated 3 years ago
• A-Normal-User / NtSocket_NtClient_NtServer

  View on GitHub
  Using NtCreateFile and NtDeviceIoControlFile to realize the function of winsock（利用NtCreateFile和NtDeviceIoControlFile 实现winsock的功能）
  ☆127Sep 9, 2022Updated 3 years ago
• fly55555 / ExdiGdbSrv

  View on GitHub
  WinDbg-Samples ExdiGdbSrv fork 修复了一部分Vmware调试的问题
  ☆32Jul 10, 2023Updated 2 years ago
• Ylarod / SignalTracer

  View on GitHub
  A kernel module for tracing signal
  ☆31Jan 17, 2023Updated 3 years ago
• gognl / VMBR

  View on GitHub
  A VMBR (Virtual-Machine Based Rootkit) which runs a guest OS and sends the attacker its data
  ☆28Apr 27, 2024Updated last year
• boom-cr3 / NotifyRoutineHijackThread

  View on GitHub
  Hijack NotifyRoutine for a kernelmode thread
  ☆41Jun 4, 2022Updated 3 years ago
• therealdreg / ida_vmware_windows_gdb

  View on GitHub
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆68Aug 11, 2023Updated 2 years ago
• Sinclairq / tp-emulator

  View on GitHub
  A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe
  ☆75Aug 16, 2023Updated 2 years ago
• Ylarod / hardware-breakpoint

  View on GitHub
  Mirror of https://gitee.com/SmartSmallBoy/hardware-breakpoint
  ☆60May 20, 2024Updated last year
• archercreat / titan

  View on GitHub
  Titan is a VMProtect devirtualizer
  ☆117Mar 6, 2024Updated last year
• HARM4Y / Karlann

  View on GitHub
  It's a kernel-based keylogger for Windows x86/x64.
  ☆145Sep 18, 2022Updated 3 years ago
• P1tt1cus / FastSymApi

  View on GitHub
  FastSymApi - A Fast API PDB Symbol Cache Server that efficiently caches and compresses PDBs on disk for quick and repeated retrieval.
  ☆19Updated this week
• msuiche / LiveCloudKd

  View on GitHub
  Hyper-V Research is trendy now
  ☆197May 6, 2024Updated last year
• 1401199262 / Hook-KdTrap

  View on GitHub
  ☆223Mar 11, 2023Updated 2 years ago
• FelixBer / FindFunc

  View on GitHub
  FindFunc is an IDA Pro plugin to find code functions that contain a certain assembly or byte pattern, reference a certain name or string,…
  ☆354Nov 17, 2025Updated 2 months ago
• Zero-Tang / NoirVisor

  View on GitHub
  The Grimoire Hypervisor solution for x86 Processors with experimental nested virtualization support. Remastering with Rust in progress.
  ☆606Feb 1, 2026Updated 2 weeks ago
• zeze-zeze / HITCON-2023-Demo-CVE-2023-20562

  View on GitHub
  ☆61Aug 21, 2023Updated 2 years ago
• yardenshafir / MitigationFlagsCliTool

  View on GitHub
  Command like tool to print mitigation flags for running processes in a memory dump
  ☆47Sep 18, 2020Updated 5 years ago
• BeneficialCode / KReClassEx

  View on GitHub
  Kernel ReClassEx
  ☆66Nov 21, 2023Updated 2 years ago
• hrbust86 / SvmNest

  View on GitHub
  a frame of amd-v svm nest
  ☆53Apr 7, 2020Updated 5 years ago
• long123king / dk

  View on GitHub
  dk is a WinDbg extenion for dumping memory data in meaningful and organized ways, it is an enhancement of my previous tokenext project.
  ☆26Feb 2, 2026Updated 2 weeks ago
• hluwa / AndSecCxQL

  View on GitHub
  Android Security Bug Queries for CheckMarx
  ☆20Sep 13, 2022Updated 3 years ago
• FiYHer / InfinityHookPro

  View on GitHub
  InfinityHookPro Win7 -> Win11 latest
  ☆551Feb 7, 2023Updated 3 years ago
• DownWithUp / ALPC-Example

  View on GitHub
  An example of a client and server using Windows' ALPC functions to send and receive data.
  ☆115Jan 21, 2025Updated last year