Alternatives and similar repositories for khaleesi:

Users that are interested in khaleesi are comparing it to the libraries listed below

• weak1337 / SystemThreadFinder
  ☆79Updated 3 years ago
• fengjixuchui / SharedMemory-By-Frankoo
  Kernel driver that uses Shared memory to communicate with UserMode
  ☆85Updated 6 years ago
• hotline1337 / umium
  Library containing Anti-RE and Anti-Debug methods.
  ☆107Updated last week
• SamuelTulach / DirectPageManipulation
  A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy
  ☆86Updated last year
• lennyRBLX / manual_exception_handling
  Handling C++ & __try exceptions without the need of built-in handlers.
  ☆71Updated 3 years ago
• ekknod / MouseClassServiceCallbackTrick
  ☆53Updated 2 years ago
• zeroaceee / EDMapper
  A documented Windows x64 bit Usermode Injector that works via hooking IAT and hijacking its threads to execute shellcode.
  ☆64Updated last year
• auth12 / sysmap
  x64 manual mapper using inline syscalls
  ☆9Updated 3 years ago
• adrianyy / x64-syscall
  x64 syscall caller in C++.
  ☆89Updated 6 years ago
• ekknod / efi-monitor
  just proof of concept. hooking MmCopyMemory PG safe.
  ☆69Updated last year
• zer0condition / GDRVLib
  Virtual and physical memory hacking library using gigabyte vulnerable driver
  ☆71Updated 2 years ago
• btbd / wpp
  Intercepting DeviceControl via WPP
  ☆133Updated 5 years ago
• weak1337 / CEDetector
  ☆46Updated 3 years ago
• 0xf1a / DSMM
  Discarded Section Manual Map
  ☆67Updated 4 years ago
• Hypercall / FakeEye
  A lightweight BattlEye emulator of the launcher
  ☆61Updated 2 years ago
• weak1337 / PresentHookDetection
  ☆78Updated 3 years ago
• danielkrupinski / KernelProcessList
  Example Windows Kernel-mode Driver which enumerates running processes.
  ☆55Updated 2 years ago
• kkent030315 / anymapper
  x64 Windows kernel driver mapper, inject unsigned driver using anycall
  ☆157Updated last year
• Aki2k / BEDaisy
  reverse engineering of bedaisy.sys (battleyes kernel driver) - Aki2k/BEDaisy
  ☆82Updated 4 years ago
• TomashuTTTT7 / Hidecall
  Hide function calls to prevent reverse-engineering
  ☆69Updated 4 years ago
• obama-gaming / xor-float
  ☆49Updated 5 years ago
• hypervisor / kli
  Kernel Lazy Importer
  ☆113Updated last year
• Zpes / syscall-direct
  ☆35Updated 3 years ago
• ItzPAX / supermode
  page table manipulation to gain physical r/w
  ☆41Updated last year
• armvirus / hook-scanner
  Scans all modules in target process for jmp/int3 hooks dissassembles then and follows jmps to destination.
  ☆75Updated last year
• mike1k / ImportCallObfuscator
  Obfuscate calls to imports by patching in stubs
  ☆67Updated 3 years ago
• mathisvickie / KMAC
  Some usefull info when reverse engineering Kernel Mode Anti-Cheat
  ☆71Updated 2 years ago
• Zpes / pte-protect
  ☆30Updated 2 years ago
• Speedi13 / ManualMapped_SEH_32bit
  Enable SEH support for manual mapped x86-32bit PEs
  ☆66Updated 6 years ago
• KDIo3 / PCIBan
  A PoC for requesting HWIDs directly from hardware, skipping any potential hooks or OS support.
  ☆80Updated 4 years ago