Alternatives and similar repositories for physmem

Users that are interested in physmem are comparing it to the libraries listed below

• xsh3llsh0ck / Calamity
  Example of using Windows Platform Binary Table (WPBT)
  ☆20Updated last year
• ranni0225 / WRK
  Windows Research Kernel VS2022 Solution
  ☆30Updated 8 months ago
• crvvdev / intraceptor
  Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.
  ☆29Updated 2 years ago
• ekknod / KiSystemStartupMeme
  Custom KiSystemStartup, can be used to modificate kernel before boot.
  ☆52Updated 3 years ago
• MiroKaku / Musa.Core
  Use ntdll/ntoskrnl to implement Kernel32, Advapi32 and other APIs. It includes user-mode and kernel-mode.
  ☆82Updated last month
• intel / unicorn-for-efi
  Unicorn Engine port for UEFI firmware
  ☆44Updated last month
• DErDYAST1R / NMICallbackBlocker2
  This is a POC Test project for INTEL CPUs on blocking NMI Entries through the IDT Handler.
  ☆50Updated 7 months ago
• gmh5225 / DSE-Patcher
  https://www.codeproject.com/Articles/5348168/Disable-Driver-Signature-Enforcement-with-DSE-Patc
  ☆17Updated last year
• Colerar / labyrinth
  Labyrinth, an LLVM obfuscation plugin for the New Pass Manager
  ☆40Updated 2 months ago
• iqrw0 / DieDMAProtection
  ☆22Updated last year
• rich-ayr / phnt_nightly
  Native API header files for the Process Hacker project (nightly).
  ☆26Updated this week
• thejanit0r / x86_dasm
  Lightweight x86-64 disassembling library
  ☆41Updated 2 years ago
• gmh5225 / FakeEnclave
  A poc that abuses Enclave
  ☆38Updated 2 years ago
• SHA-MRIZ / DisplayMiniportHooking
  ☆47Updated 4 years ago
• Peribunt / Exception-Ret-Spoofing
  A simple way to spoof return addresses using an exception handler
  ☆31Updated 2 years ago
• ReverseSec / eryx
  Collection of Cheat dumps for Research and Detection.
  ☆13Updated this week
• mrexodia / EfiCMake
  CMake template for a basic EFI application/bootkit. This library is header-only, there is no EDK2 runtime!).
  ☆77Updated 2 years ago
• KiFilterFiberContext / windows-software-policy
  Research on obfuscated licensing APIs / CLIP service in the Windows kernel
  ☆111Updated 2 years ago
• tandasat / WPBT-Builder
  The simple UEFI application to create a Windows Platform Binary Table (WPBT) from the UEFI shell.
  ☆110Updated 3 years ago
• kkent030315 / anyvtop
  x64 Windows implementation of virtual-address to physical-address translation
  ☆42Updated 3 years ago
• RIscRIpt / wdmcpp
  Visual Studio Project example for using Microsoft's STL in WDM (Windows Kernel-mode Driver)
  ☆25Updated 3 years ago
• KNSoft / KNSoft.SlimDetours
  An improved Detours.
  ☆65Updated 2 weeks ago
• synctop / tpm-mmio
  Using MMIO (Memory-Mapped I/O) to read TPM 2.0 public Endorsement Key.
  ☆40Updated 11 months ago
• SamuelTulach / winzentool
  Port of zentool to Windows
  ☆24Updated 2 months ago
• Jhinxs / hvcv
  Virtualization Simply Code
  ☆22Updated 3 years ago
• CZashi / win-reverse
  ntos shit
  ☆24Updated last year
• xia0ji233 / KACE
  Emulate Drivers in RING3 with self context mapping or unicorn
  ☆29Updated 4 months ago
• helloobaby / Nmi-Callback
  detect hypervisor with Nmi Callback
  ☆34Updated 2 years ago
• Wack0 / SecureBootPolicyTools
  Take back control of Windows Code Integrity, no exploits or patching required! Requires that you control your own Platform Key (PK).
  ☆44Updated 2 years ago
• 0mWindyBug / WFPCalloutReserach
  research revolving the windows filtering platform callout mechanism
  ☆32Updated 11 months ago