coldpon/ring3-hidden external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

coldpon/ring3-hidden

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/coldpon/ring3-hidden)

Close

coldpon / ring3-hiddenView on GitHubMore

• External links
• Readme badge

Hide processes, files, services in Windows ring3

☆33Jun 4, 2024Updated last year

Alternatives and similar repositories for ring3-hidden

Users that are interested in ring3-hidden are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Giannis101 / Hades-AntiDebug

  View on GitHub
  An advanced and low-level c++ x64 Windows usermode debugging detector, able to bypass any usermode debugger-hide tool
  ☆19Jun 5, 2024Updated last year
• qi4L / sRDI-rs

  View on GitHub
  Rust 重构的 sRDI
  ☆17Sep 9, 2024Updated last year
• KiExitDispatcher / Nyx-Full-Dll-Unhook

  View on GitHub
  (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.
  ☆51May 22, 2025Updated 10 months ago
• adamhlt / Basic-Rootkit

  View on GitHub
  POC Ring3 Windows Rootkit (x86 / x64) - Hide processes and files
  ☆63Aug 1, 2023Updated 2 years ago
• Gakamine / EFREI-C2-Example

  View on GitHub
  A simple C2 using Google Translate Webpage for data evasion
  ☆12Jan 30, 2023Updated 3 years ago
• HolyGu / CobaltStrikeToWateringhole

  View on GitHub
  ☆17Jul 18, 2022Updated 3 years ago
• 9bie / iatHijackGenerate

  View on GitHub
  白加黑的快速生成器（针对IAT类型）
  ☆115Sep 19, 2022Updated 3 years ago
• yj94 / Yj_learning

  View on GitHub
  天问之路
  ☆41Updated this week
• AlSch092 / ModifyExports

  View on GitHub
  Research of modifying exported function names at runtime (C/C++, Windows)
  ☆18May 28, 2024Updated last year
• Arcueld / schtasks

  View on GitHub
  create schtasks bypass AV
  ☆23Jul 14, 2024Updated last year
• webraybtl / PeachFuzzer

  View on GitHub
  Peach Fuzzer漏洞挖掘实战
  ☆23Jul 6, 2023Updated 2 years ago
• repnz / set-critical-thread

  View on GitHub
  Use NtSetInformationThread(ThreadBreakOnTermination) for anti-debugging
  ☆15Sep 21, 2019Updated 6 years ago
• senko37 / createprocessnotify-hook

  View on GitHub
  PsSetCreateProcessNotifyRoutine/Ex/Ex2 hook
  ☆13May 30, 2024Updated last year
• watchtowrlabs / watchTowr-vs-FortiSIEM-CVE-2025-25256

  View on GitHub
  ☆18Aug 15, 2025Updated 7 months ago
• INotGreen / ShellCodeTemper

  View on GitHub
  制作 shellcode 的模板
  ☆32Oct 30, 2024Updated last year
• qi4L / CallbackLoader-go

  View on GitHub
  Callback Function Loader Implemented in Go
  ☆140Mar 26, 2024Updated last year
• qi4L / Blackout-go

  View on GitHub
  kill AV/EDR
  ☆21Jun 9, 2023Updated 2 years ago
• damotou / inlinehook

  View on GitHub
  windows inlinehook R3 R0
  ☆11Apr 11, 2018Updated 7 years ago
• h0pe-ay / HookTechnology

  View on GitHub
  记录一下Windows下的Hook技巧
  ☆15Jul 15, 2024Updated last year
• Cherno-x / MyShellcodeLoader

  View on GitHub
  免杀与恶意软件开发
  ☆251Jan 4, 2026Updated 2 months ago
• ProcessusT / Venoma

  View on GitHub
  Yet another C++ Cobalt Strike beacon dropper with Compile-Time API hashing and custom indirect syscalls execution
  ☆199May 29, 2025Updated 9 months ago
• yutianqaq / x1Ldr

  View on GitHub
  XOR 加密 分离免杀
  ☆68Dec 15, 2023Updated 2 years ago
• mutur4 / Linux-Malware

  View on GitHub
  A project for building Linux && IoT Malware for fun and no-profit
  ☆17Jan 24, 2025Updated last year
• jpz4085 / UEFI-GPT-fdisk

  View on GitHub
  GPT fdisk partitioning tool for use under UEFI environments.
  ☆17Nov 27, 2024Updated last year
• qi4L / monitor-Go

  View on GitHub
  AWD 文件监控
  ☆29Sep 14, 2023Updated 2 years ago
• Ahora57 / HypervisorCheckR0

  View on GitHub
  Just check hypervisor in ring0
  ☆16Jun 7, 2023Updated 2 years ago
• KNSoft / KNSoft.MakeLifeEasier

  View on GitHub
  A fast, low-level and convenient C/C++ library to "Make Life Easier" when suffering from Windows NT development.
  ☆32Feb 11, 2026Updated last month
• qi4L / CVE-2023-25610

  View on GitHub
  FortiOS 管理界面中的堆内存下溢导致远程代码执行
  ☆23Jun 21, 2023Updated 2 years ago
• famei / go-dllhijack

  View on GitHub
  基于go的简单劫持方法
  ☆50Jan 3, 2022Updated 4 years ago
• 1y0n / AVKiller

  View on GitHub
  一种通过进程注入实现强制关闭部分杀软进程的方法（以360安全卫士和360杀毒为例）
  ☆138Dec 26, 2023Updated 2 years ago
• dziegel / cpp_event_framework

  View on GitHub
  C++ event and statemachine framework
  ☆12Jan 7, 2026Updated 2 months ago
• cycript / FTPM_POC

  View on GitHub
  ☆20Apr 5, 2025Updated 11 months ago
• nyaThoi / nEShit

  View on GitHub
  External Hack for Aura Kingdom TO
  ☆14Feb 17, 2023Updated 3 years ago
• msx752 / ModniteServer

  View on GitHub
  Private server
  ☆14Apr 29, 2022Updated 3 years ago
• pfirsich / Ray-casting-test

  View on GitHub
  This is an implementation/comparison of various methods for ray casting in 2D grids, also referenced in my corresponding blog post: http…
  ☆10Apr 26, 2019Updated 6 years ago
• baimao-box / Self-Defective-Program

  View on GitHub
  无Windows API的新型恶意程序：自缺陷程序利用堆栈溢出的隐匿稳定攻击技术研究，A new type of malicious program without Windows API
  ☆88Mar 27, 2025Updated 11 months ago
• lennyRBLX / window_hijack

  View on GitHub
  Rendering on external windows via hijacking thread contexts, with notes on ValidateHwnd
  ☆14Jul 9, 2020Updated 5 years ago
• M0nster3 / Beacon

  View on GitHub
  重构Beacon
  ☆165Aug 19, 2024Updated last year
• 0xTriboulet / emerald_template

  View on GitHub
  A cmake template for crystal palace
  ☆39Dec 20, 2025Updated 3 months ago