Alternatives and similar repositories for bedaisy-reversal

Users that are interested in bedaisy-reversal are comparing it to the libraries listed below

• KANKOSHEV / Detect-KeAttachProcess
  Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.
  ☆118Updated 3 years ago
• J0xna / Kernel-Overlay-Hider
  ☆147Updated last year
• fengjixuchui / SharedMemory-By-Frankoo
  Kernel driver that uses Shared memory to communicate with UserMode
  ☆88Updated 6 years ago
• cutecatsandvirtualmachines / CheatDriver
  Example driver on how to use SKLib
  ☆65Updated last year
• hypervisor / kli
  Kernel Lazy Importer
  ☆126Updated last year
• gmh5225 / ida-find-.data-ptr
  A simple ida python script to find .data ptr
  ☆56Updated 2 years ago
• WolfyZ99 / Kernel-AntiCheat
  ☆70Updated 4 years ago
• ekknod / MouseClassServiceCallbackTrick
  ☆63Updated 3 years ago
• samshine / VoyagerWithEPT
  ☆64Updated 3 years ago
• 0xf1a / DSMM
  Discarded Section Manual Map
  ☆68Updated 5 years ago
• Deputation / pagewalkr
  An x64 page table iterator written in C++ as a kernel mode windows driver.
  ☆115Updated 4 years ago
• r1cky33 / krnl-gdi-render
  ☆108Updated 2 years ago
• Aki2k / BEDaisy
  reverse engineering of bedaisy.sys (battleyes kernel driver) - Aki2k/BEDaisy
  ☆111Updated 5 years ago
• Sinclairq / hierarchy-eac
  Bypassing EasyAntiCheat.sys self-integrity by abusing call hierarchy
  ☆83Updated 3 years ago
• ekknod / MouseClassServiceCallbackMeme
  Calling "own" MouseClassServiceCallback
  ☆74Updated 3 years ago
• Zpes / syscall-direct
  ☆36Updated 3 years ago
• zer0condition / Reversing-a-signed-driver
  Reverse Engineering a signed kernel driver packed and virtualized with VMProtect 3.6
  ☆104Updated 2 years ago
• ekknod / acdrv
  base for testing
  ☆181Updated last year
• 1401199262 / NMIStackWalk
  ☆73Updated 3 years ago
• SamuelTulach / DirectPageManipulation
  A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy
  ☆101Updated 2 years ago
• boom-cr3 / VTableKFunctionHook
  This project will give you an example how you can hook a kernel vtable function that cannot be directly called
  ☆83Updated 4 years ago
• SamuelTulach / voidmap
  Using CVE-2021-40449 to manual map kernel mode driver
  ☆104Updated 3 years ago
• KDIo3 / PCIBan
  A PoC for requesting HWIDs directly from hardware, skipping any potential hooks or OS support.
  ☆87Updated 4 years ago
• EBalloon / Common-Registry
  ☆48Updated 3 years ago
• armasm / dwmhook
  noob hooking dwm for overlay
  ☆83Updated 5 years ago
• ekknod / sumap
  manually map driver for a signed driver memory space
  ☆167Updated 4 years ago
• weak1337 / BEShellcodeDumper
  ☆43Updated 4 years ago
• backengineering / Voyager
  A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)
  ☆123Updated 2 years ago
• cs1ime / sehcall
  Windows X64 mode use seh in manual mapped dll or manual mapped sys
  ☆77Updated 3 years ago
• Air14 / SymbolicAccess
  Static user/kernel mode library that allows access to all functions and global variables by extracting offsets from the PDB
  ☆113Updated 7 months ago