Alternatives and similar repositories for sigbreaker

Users that are interested in sigbreaker are comparing it to the libraries listed below

• SamuelTulach / SecureGame
  Proof-of-concept game using VBS enclaves to protect itself from cheating
  ☆49Updated last year
• AmitMoshel1 / PatchGuardEncryptorDriver
  A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.
  ☆78Updated 10 months ago
• carlos-al / user-kernel-syscall-hook
  ☆93Updated last year
• 0mWindyBug / DataptrHooks
  ntoskrnl .data hooks for UM-KM communication
  ☆53Updated last year
• djolertrk / kovid-obfuscation-passes
  A set of LLVM and GCC based plugins that perform code obfuscation.
  ☆138Updated 3 months ago
• connormcgarr / SkBridge
  Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1
  ☆70Updated 4 months ago
• worawit / malk
  Demonstrate calling a kernel function and handle process creation callback against HVCI
  ☆79Updated 3 years ago
• connormcgarr / Vtl1Mon
  Virtual Trust Level (VTL 1) secure call tracing
  ☆86Updated 5 months ago
• brew02 / BudgetEPT
  Create stealthy, inline, EPT-like hooks using SMAP and SMEP
  ☆60Updated last year
• zx0CF1 / shredder-rs
  A high-fidelity x86_64 polymorphic mutation engine focused on instruction-level fragmentation and context preservation.
  ☆107Updated 2 weeks ago
• GetRektBoy724 / warbird-research
  Find out how to bypass HVCI (or not). My own research on Microsoft Warbird (specifically in clipsp.sys)
  ☆86Updated 3 months ago
• FunnyWhaleDev / AlterLoadDll
  Load dll with undocumented functions and debug symbols
  ☆47Updated last year
• gabriellandau / ShadowStackWalk
  Finding Truth in the Shadows
  ☆120Updated 3 years ago
• SamuelTulach / unxorer
  Yet another IDA Pro/Home plugin for deobfuscating stack strings
  ☆117Updated last week
• zer0condition / NTMemory
  Usermode NT Explorer - Query kernel addresses, translate virtual to physical addresses, inspect the PFN database, and more.
  ☆66Updated last week
• android1337 / brkida
  C++ macro for x64 programs that breaks ida hex-rays decompiler tool.
  ☆137Updated last year
• greyb1t / GreyM
  Me fockin' pe protector
  ☆45Updated 3 years ago
• eversinc33 / drvtrace
  WinDbg plugin to trace module transitions from a debugged driver.
  ☆38Updated last month
• cursey / x64-virtualizer-rs
  x86-64 virtualizing obfuscator written in Rust
  ☆78Updated 2 years ago
• backengineering / pdbgen2
  Generate a PDB file given the old PDB file and an address mapping
  ☆51Updated 6 months ago
• vmsplit / checkm8
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆82Updated 10 months ago
• badhive / stitch
  Rewrite and obfuscate code in compiled binaries
  ☆273Updated last month
• backengineering / elderscroll
  PDB Rewriting Rust Library
  ☆26Updated last year
• b-irb / PigPEI
  PEIM (UEFI) bootkit targeting OVMF (EDK2)
  ☆41Updated 2 years ago
• tandasat / CVE-2024-21305
  Report and exploit of CVE-2024-21305.
  ☆38Updated 2 years ago
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆95Updated last year
• zer0condition / Demystifying-PatchGuard
  Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…
  ☆132Updated 2 years ago
• ssnob / hidden_syscall_monitoring
  monitors hidden syscalls called from call of duty anticheat
  ☆89Updated last year
• rbmm / TPM
  Easy encrypt/decrypt data with TPM
  ☆25Updated last year
• zer0condition / BusterCall
  "Bypassing" HVCI via donor PFN swaps to modify read-only code pages. Call chained kernel functions (kCET and SLAT support), modify read-o…
  ☆43Updated 2 weeks ago