Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
☆146Jun 10, 2026Updated this week
Alternatives and similar repositories for ntoseye
Users that are interested in ntoseye are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures☆38Sep 22, 2024Updated last year
- Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!☆441Apr 19, 2025Updated last year
- Minimalistic AMD-V/SVM hypervisor with memory introspection capabilities☆416Feb 26, 2025Updated last year
- bootkit驱动映射,三环进程注入加载指定模块☆14Oct 8, 2024Updated last year
- Hooking Windows' exception dispatcher to protect process's PML4☆256Jan 24, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- call gates as stable comunication channel for NT x86 and Linux x86_64☆32Aug 11, 2023Updated 2 years ago
- A large collection of 32bit and 64bit PE files useful for verifying the correctness of bin2bin transformations☆78Aug 2, 2024Updated last year
- ☆10Feb 1, 2022Updated 4 years ago
- Rewrite and obfuscate code in compiled binaries☆274Dec 13, 2025Updated 6 months ago
- ☆17Sep 25, 2024Updated last year
- C++ Assembler with Built-in Mutation Engine☆30Sep 6, 2025Updated 9 months ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated last year
- ☆31Feb 28, 2025Updated last year
- Hypervisor-based debugger for AMD processors☆67May 13, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Translate virtual addresses to physical addresses from usermode.☆133Jun 7, 2024Updated 2 years ago
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆64Oct 19, 2024Updated last year
- Reverse engineered API for Microsoft's Time Travel Debugger☆36Apr 18, 2024Updated 2 years ago
- Handling C++ & __try exceptions without the need of built-in handlers.☆76Aug 28, 2021Updated 4 years ago
- Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in …☆57Dec 30, 2025Updated 5 months ago
- LLVM based static binary analysis framework☆347May 25, 2026Updated 3 weeks ago
- Panda - is a set of utilities used to research how PsExec encrypts its traffic.☆13Apr 20, 2021Updated 5 years ago
- ExportHider: Generating Export Table during Runtime to Hide the Exported Functions from the DLL File.☆33Apr 12, 2026Updated 2 months ago
- Beacon Debugger☆56Oct 28, 2024Updated last year
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Internals information about Hyper-V☆738May 6, 2026Updated last month
- ☆59Updated this week
- Native code virtualizer for x64 binaries☆531Dec 20, 2024Updated last year
- WinVisor - A hypervisor-based emulator for Windows x64 user-mode executables using Windows Hypervisor Platform API☆666Jan 23, 2025Updated last year
- Example of waiting for Event Objects by associating them with a I/O Completion Port (IOCP), effectively lifting MAXIMUM_WAIT_OBJECTS (64)…☆47Apr 10, 2026Updated 2 months ago
- Single header version of System Informer's phnt library.☆243Mar 27, 2026Updated 2 months ago
- Collection of hypervisor detections☆310Sep 25, 2024Updated last year
- TeamViewer User to Kernel Elevation of Privilege PoC. CVE-2024-7479 and CVE-2024-7481. ZDI-24-1289 and ZDI-24-1290. TV-2024-1006.☆136Dec 22, 2024Updated last year
- The research UEFI hypervisor that supports booting an operating system.☆743Aug 15, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- An example of an external LLVM plugin module transform pass for the latest versions.☆15Oct 21, 2025Updated 7 months ago
- A universal binary patching dll.☆119Oct 9, 2024Updated last year
- ☆14Mar 13, 2023Updated 3 years ago
- exploder☆13Sep 21, 2024Updated last year
- Clr Injection for x64 and x86. Inject C# into Managed or Unmanaged Processes.☆19Sep 7, 2024Updated last year
- Efficient general mixed boolean-arithmetic (MBA) simplifier☆132Apr 30, 2026Updated last month
- Kernel Hook X64☆25Oct 11, 2020Updated 5 years ago