Alternatives and similar repositories for physmem

Users that are interested in physmem are comparing it to the libraries listed below

• xsh3llsh0ck / Calamity
  Example of using Windows Platform Binary Table (WPBT)
  ☆26Updated 2 years ago
• mrexodia / EfiCMake
  CMake template for a basic EFI application/bootkit. This library is header-only, there is no EDK2 runtime!).
  ☆79Updated 3 years ago
• MiroKaku / Musa.Core
  Use ntdll/ntoskrnl to implement Kernel32, Advapi32 and other APIs. It includes user-mode and kernel-mode.
  ☆91Updated 3 months ago
• HyperDbg / RedDbg
  Hypervisor-based debugger for AMD processors
  ☆61Updated last year
• Flawww / WoW64Injection
  Proof of concept for injecting a 64-bit DLL into a 32-bit application
  ☆43Updated 2 years ago
• NewWorldComingSoon / llvm-msvc
  This project migrated to https://github.com/backengineering/llvm-msvc
  ☆83Updated 2 years ago
• BerkanYildiz / EasyNT
  Windows Kernel API wrapper with simplified functions and enterprise driver extensions.
  ☆28Updated 5 months ago
• SHA-MRIZ / DisplayMiniportHooking
  ☆51Updated 4 years ago
• ekknod / KiSystemStartupMeme
  Custom KiSystemStartup, can be used to modificate kernel before boot.
  ☆51Updated 3 years ago
• paysonism / saturn-mapper
  Load vulnerable drivers using iqvw64e.sys hijack
  ☆32Updated last year
• synctop / tpm-mmio
  Using MMIO (Memory-Mapped I/O) to read TPM 2.0 public Endorsement Key.
  ☆50Updated last year
• vasie1337 / sharedsection-driver
  driver that communicates using a shared section
  ☆77Updated 8 months ago
• sonyps5201314 / wow64ext
  Another wow64ext to try to be compatible with WOW64 for all architectures.
  ☆98Updated 4 months ago
• Sinclairq / tp-emulator
  A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe
  ☆73Updated 2 years ago
• allogic / KDBG
  The windows kernel debugger consists of two parts, KMOD which is the kernel driver handling ring3 request and KCLI, the command line inte…
  ☆98Updated 3 years ago
• ekknod / ec-guard
  Proof of concept Anti-Cheat plugin.
  ☆55Updated last year
• kkent030315 / anyvtop
  x64 Windows implementation of virtual-address to physical-address translation
  ☆45Updated 4 years ago
• SamuelTulach / SecureFakePkg
  Simple EFI runtime driver that hooks GetVariable function and returns data expected by Windows to make it think that it's running with se…
  ☆213Updated 4 years ago
• Valthrun / valthrun-uefi-mapper
  Windows driver mapper via the UEFI
  ☆51Updated 5 months ago
• Vicshann / GInjer
  Global DLL injector
  ☆69Updated 4 years ago
• KNSoft / KNSoft.SlimDetours
  An improved Detours.
  ☆88Updated 3 weeks ago
• irql / nokd
  reverse engineering of the windows nt kernel debugger protocol & reimplementation.
  ☆35Updated last year
• weak1337 / NvidiaApi
  ☆76Updated 3 years ago
• DErDYAST1R / SilentFunctionCaller
  Allows for same-file KernelMode function execution using Encrypted addresses of Functions
  ☆47Updated 2 months ago
• gmh5225 / DSE-Patcher
  https://www.codeproject.com/Articles/5348168/Disable-Driver-Signature-Enforcement-with-DSE-Patc
  ☆20Updated 2 years ago
• 0mWindyBug / KernelInjector
  PoC kernel to usermode injection
  ☆91Updated last year
• zer0condition / Reversing-a-signed-driver
  Reverse Engineering a signed kernel driver packed and virtualized with VMProtect 3.6
  ☆104Updated 2 years ago
• Hxnter999 / vmm
  Simple and lightweight hypervisor for AMD processors
  ☆41Updated last month
• GetRektBoy724 / KPDB
  Windows PDB parser for kernel-mode environment.
  ☆103Updated 6 months ago
• ThomasonZhao / InfinityHookProMax
  InfinityHookProMax: Make InfinityHook great great again
  ☆48Updated 2 years ago