Alternatives and similar repositories for physmem:

Users that are interested in physmem are comparing it to the libraries listed below

• backengineering / msrexec
  Elevate arbitrary MSR writes to kernel execution.
  ☆26Updated last year
• KNSoft / KNSoft.SlimDetours
  An improved Detours.
  ☆52Updated this week
• ranni0225 / WRK
  Windows Research Kernel VS2022 Solution
  ☆29Updated 6 months ago
• xsh3llsh0ck / Calamity
  Example of using Windows Platform Binary Table (WPBT)
  ☆16Updated last year
• crvvdev / intraceptor
  Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.
  ☆29Updated 2 years ago
• iqrw0 / DieDMAProtection
  ☆22Updated 11 months ago
• kyle-elliott / DVM
  Symbolic Execution based on lifting amd64 to z3
  ☆26Updated 8 months ago
• ZehMatt / zyemu
  x86-64 user mode emulation using Zydis
  ☆44Updated last month
• Oliver-1-1 / EtwKeyboardDetection
  ☆29Updated 5 months ago
• gmh5225 / FakeEnclave
  A poc that abuses Enclave
  ☆36Updated 2 years ago
• thejanit0r / x86_dasm
  Lightweight x86-64 disassembling library
  ☆41Updated 2 years ago
• mrexodia / EfiCMake
  CMake template for a basic EFI application/bootkit. This library is header-only, there is no EDK2 runtime!).
  ☆76Updated 2 years ago
• gmh5225 / DSE-Patcher
  https://www.codeproject.com/Articles/5348168/Disable-Driver-Signature-Enforcement-with-DSE-Patc
  ☆16Updated last year
• Ahora57 / Unabomber
  Improved VMP Idea(detect anti-anti-debug tools by bug)
  ☆41Updated last year
• Protonr0 / AMD-Hypervisor
  A basic Secure Virtual Machine hypervisor
  ☆20Updated 4 years ago
• hfiref0x / AsIo3Unlock
  ASUSTeK AsIO3 I/O driver unlock
  ☆20Updated 3 years ago
• synctop / tpm-mmio
  Using MMIO (Memory-Mapped I/O) to read TPM 2.0 public Endorsement Key.
  ☆41Updated 9 months ago
• Nitr0-G / Rework-part-of-z3-proving
  This is the PoC of a dynamic lifter and deobfuscator with collecting trace.
  ☆35Updated last year
• Vicshann / GInjer
  Global DLL injector
  ☆66Updated 3 years ago
• lunarjournal / cdl86
  Tiny C x86_64 function detouring library.
  ☆26Updated last month
• mike1k / HardwareBreakpoint
  X86/X64 Hardware Breakpoint Manager
  ☆41Updated 3 years ago
• NtKernelMC / MDE
  Manual Mapping Detection Library
  ☆19Updated 4 years ago
• helloobaby / Nmi-Callback
  detect hypervisor with Nmi Callback
  ☆34Updated 2 years ago
• Nitr0-G / SVM-Hypervisor
  This is a ring -1 header framework in order to simplify the creation of hypervisors on SVM
  ☆22Updated last year
• DenuvoSoftwareSolutions / DVRT
  How Meltdown and Spectre haunt Anti-Cheat: DVRT details
  ☆21Updated 6 months ago
• Sinclairq / tp-emulator
  A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe
  ☆71Updated last year
• KiFilterFiberContext / BadlionLogger
  kernel driver used to monitor the activity of BadlionAnticheat.sys by patching its IAT
  ☆33Updated 3 years ago
• mibho / x64dbg-vmp-trace
  unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…
  ☆56Updated last year
• Nou4r / Cool-Hypervisor
  A intel hypervisor, implementing many virtualization techniques
  ☆40Updated last year
• addrianyy / asmlib_x64
  x64 assembler library
  ☆31Updated 8 months ago