Alternatives and similar repositories for process-injection-guard

Users that are interested in process-injection-guard are comparing it to the libraries listed below

• zodiacon / DbgPrint
  Debug Print viewer (user and kernel)
  ☆66Updated last year
• kkent030315 / EvilHooker
  Function hooks in Windows NT Kernel
  ☆23Updated 4 years ago
• backengineering / msrexec
  Elevate arbitrary MSR writes to kernel execution.
  ☆35Updated last year
• h4xu3lyn / FuckPg
  Analysing and defeating PatchGuard universally
  ☆34Updated 4 years ago
• crvvdev / intraceptor
  Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.
  ☆29Updated 2 years ago
• sreeharshabandi / Captain
  Process Creation, Image Load and Thread Creation Notification
  ☆12Updated last year
• moccajoghurt / MemWars
  ☆48Updated 6 years ago
• mike1k / HardwareBreakpoint
  X86/X64 Hardware Breakpoint Manager
  ☆41Updated 3 years ago
• h311d1n3r / LetsHook
  A Windows API hooking library !
  ☆31Updated 2 years ago
• mrexodia / IATFaker
  Small project to generate fake DLLs based on an executable's import table
  ☆23Updated 5 years ago
• Broihon / Symbol-Parser
  Small class to parse debug info from PEs, download their respective PDBs from the Microsoft Public Symbol Server and calculate RVAs of fu…
  ☆44Updated 2 years ago
• NewWorldComingSoon / UnknownField
  UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.
  ☆44Updated 2 years ago
• ByteWhite1x1 / PatchGuardResearch
  Bypassing kernel patch protection runtime
  ☆20Updated 2 years ago
• msmania / hk
  Injector with kernel power
  ☆16Updated 4 years ago
• Broihon / StartRoutine
  A library with four different methods to execute shellcode in a process
  ☆24Updated 5 years ago
• gmh5225 / FakeEnclave
  A poc that abuses Enclave
  ☆38Updated 2 years ago
• NtKernelMC / MemoryGuard
  Memory Guard Library
  ☆11Updated 4 years ago
• zodiacon / DepWalk
  ☆37Updated this week
• samshine / ScyllaHideDetector2
  Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.
  ☆25Updated 5 years ago
• Rat431 / ColdHide
  (DEPRECATED) A simple anti-anti debug library for Windows
  ☆29Updated 4 years ago
• d35ha / xPE
  Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling
  ☆33Updated 5 years ago
• NewWorldComingSoon / llvm-msvc-windows-driver-template
  Windows kernel driver template for cmkr and llvm-msvc.
  ☆34Updated last year
• johnsonjason / Remote-Thread-Executor
  Code injection by hijacking threads in Windows 32-bit applications
  ☆43Updated 6 years ago
• Broihon / ProcessInfo
  A class to gather information about a process, its threads and modules.
  ☆24Updated 5 years ago
• rbapat / KernelInjector
  Stealthy Injector that leverages a vulnerable driver and other exploits to remain undetected
  ☆36Updated 6 years ago
• guidedhacking / GH_Syscall
  Small class to help perform syscalls.
  ☆21Updated 2 weeks ago
• opcode86 / SysCaller
  Single header library to simplify the usage of direct syscalls. x64/x86
  ☆11Updated 2 years ago
• xtremegamer1 / vmdevirt-vtil
  ☆27Updated last year
• Rat431 / ColdKernel_KUSER
  A simple kernel mode driver that hooks some values at the KUSER_SHARED_DATA structure.
  ☆26Updated 5 years ago
• DErDYAST1R / NMICallbackBlocker2
  This is a POC Test project for INTEL CPUs on blocking NMI Entries through the IDT Handler.
  ☆50Updated 6 months ago