Alternatives and similar repositories for Anti_Virus

Users that are interested in Anti_Virus are comparing it to the libraries listed below

• martinalebachew / Lighthouse
  Activate Windows & Office 🔑
  ☆13Updated last year
• Pdawg-bytes / UEFIBootKit
  A simple UEFI bootkit made by @NSG650 and me.
  ☆26Updated 11 months ago
• ic3qu33n / REcon2024-GOP-Complex
  REcon 2024 Repo, slides for talk "GOP Complex: Image parsing bugs, EBC polymorphic engines and the Deus ex machina of UEFI exploit dev""
  ☆14Updated 8 months ago
• m417z / x64dbg-xfg-marker
  An x64dbg plugin which marks XFG call signatures as data
  ☆78Updated 2 years ago
• zodiacon / KObjects
  Sample for Creating a new kernel object type and supporting API
  ☆26Updated last year
• dmaivel / ntoseye
  Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
  ☆99Updated 6 months ago
• WHots / RosaryAV
  Lightweight Threat Detection System - (Base)
  ☆15Updated last year
• shaygitub / windows-rootkit
  windows rootkit
  ☆59Updated last year
• backengineering / pdbgen2
  Generate a PDB file given the old PDB file and an address mapping
  ☆49Updated 3 months ago
• connormcgarr / SkBridge
  Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1
  ☆68Updated 2 months ago
• vmsplit / checkm8
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆82Updated 8 months ago
• alal4465 / HeavensGateHook
  Hooking Heavens Gate in a weekend
  ☆13Updated 3 years ago
• Slowerzs / KeyJumper
  ☆51Updated 8 months ago
• Idov31 / EtwLeakKernel
  Leaking kernel addresses from ETW consumers. Requires Administrator privileges.
  ☆85Updated 3 weeks ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆27Updated 2 years ago
• connormcgarr / Vtl1Mon
  Virtual Trust Level (VTL 1) secure call tracing
  ☆83Updated 3 months ago
• Xienim / Delphi-Kawaii
  Delphi-Kawaii is a plugin for Ida Pro.
  ☆21Updated 2 years ago
• SamuelTulach / SecureGame
  Proof-of-concept game using VBS enclaves to protect itself from cheating
  ☆45Updated last year
• ByteWhite1x1 / PatchGuardResearch
  Bypassing kernel patch protection runtime
  ☆20Updated 2 years ago
• cbwang505 / Win11PoolView
  正确解析 _HEAP_VS_***符号 ,支持在最新win11 24h2 运行,替换windbg自带的!pool命令
  ☆17Updated last year
• codedefender-io / sigbreaker
  All LLVM binaries scrambled with SigBreaker and used to test against llvm-lit
  ☆26Updated 6 months ago
• milankovo / zydisinfo
  ☆28Updated last month
• 3dnow / NtCreateLowBoxToken
  A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering
  ☆41Updated 5 months ago
• jeperez / WinREPL
  x86 and x64 assembly "read-eval-print loop" for Windows
  ☆33Updated 8 years ago
• KiFilterFiberContext / windows-software-policy
  Research on obfuscated licensing APIs / CLIP service in the Windows kernel
  ☆125Updated 3 years ago
• repnz / windows-imports-searcher
  Support Windows OS Reversing by searching easily for references to functions across many DLLs
  ☆32Updated 3 years ago
• AaLl86 / WindowsInternals
  Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book
  ☆114Updated last year
• kkent030315 / Van1338
  A journal for $6,000 Riot Vanguard bounty.
  ☆66Updated 2 years ago
• ch3rn0byl / Gremlins
  ☆14Updated 2 years ago
• zodiacon / TraceConnections
  Simple example for getting started with eBPF for Windows
  ☆48Updated 9 months ago