Alternatives and similar repositories for GH_AntiDebug_Bypass_Practice_Tool

Users that are interested in GH_AntiDebug_Bypass_Practice_Tool are comparing it to the libraries listed below

• Xyrem / Yumekage
  Demo proof of concept for shadow regions, and implementation of HyperDeceit.
  ☆280Updated 2 years ago
• hfiref0x / WubbabooMark
  Debugger Anti-Detection Benchmark
  ☆334Updated last year
• mike1k / perses
  X86 Mutation Engine with Portable Executable compatibility.
  ☆497Updated 3 years ago
• notpidgey / EagleVM
  Native code virtualizer for x64 binaries
  ☆486Updated 6 months ago
• Oliver-1-1 / GhostMapper
  ☆299Updated last month
• M-r-J-o-h-n / SWH-Injector
  An Injector that can inject dll into game process protected by anti cheat using SetWindowsHookEx.
  ☆244Updated 6 years ago
• Barracudach / CallStack-Spoofer
  This tool will allow you to spoof the return addresses of your functions as well as system functions.
  ☆497Updated 2 years ago
• can1357 / hvdetecc
  Collection of hypervisor detections
  ☆239Updated 9 months ago
• charliewolfe / Stealthy-Kernelmode-Injector
  Manual mapper that uses PTE manipulation, Virtual Address Descriptor (VAD) manipulation, and forceful memory allocation to hide executabl…
  ☆332Updated 3 years ago
• stevemk14ebr / RETools
  My reversing tools. Some custom, some not.
  ☆205Updated last year
• SamuelTulach / RwxMeme
  State of the art DLL injector that took 20 minutes to make
  ☆217Updated last year
• mike1k / HookHunter
  Analyze patches in a process
  ☆254Updated 3 years ago
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆144Updated 2 years ago
• adrianyy / rw_socket_driver
  Driver that uses network sockets to communicate with client and read/ write protected process memory.
  ☆553Updated 6 years ago
• kkent030315 / anycall
  x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration
  ☆330Updated 2 years ago
• Cr4sh / KernelForge
  A library to develop kernel level Windows payloads for post HVCI era
  ☆411Updated 4 years ago
• mactec0 / Kernelmode-manual-mapping-through-IAT
  Manual mapping without creating any threads, with rw only access
  ☆749Updated 5 years ago
• armvirus / SinMapper
  usermode driver mapper that forcefully loads any signed kernel driver (legit cert) with a big enough section (example: .data, .rdata) to …
  ☆434Updated 3 years ago
• ryan-weil / HideProcessHook
  DLL that hooks the NtQuerySystemInformation API and hides a process name
  ☆289Updated 2 years ago
• notscimmy / libelevate
  Handle elevation DKOM against ObRegisterCallbacks
  ☆306Updated 6 years ago
• crvvdev / MasterHide
  A x64 Windows Rootkit using SSDT or Hypervisor hook
  ☆540Updated 5 months ago
• thesecretclub / SandboxBootkit
  Bootkit for Windows Sandbox to disable DSE/PatchGuard.
  ☆289Updated 8 months ago
• VollRagm / lpmapper
  A mapper that maps shellcode into loaded large page drivers
  ☆283Updated 3 years ago
• ergrelet / themida-unmutate
  Static deobfuscator for Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.
  ☆287Updated 10 months ago
• d35ha / xObf
  Simple x86/x86_64 instruction level obfuscator based on a basic SBI engine
  ☆270Updated 2 years ago
• adrianyy / kernelhook
  Windows inline hooking tool.
  ☆273Updated 6 years ago
• can1357 / NtRays
  Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
  ☆603Updated 4 months ago
• YouNeverKnow00 / Kernelmode-DLL-Injector
  Simple Kernelmode DLL Injector with Manual mapping
  ☆294Updated last year
• JustasMasiulis / inline_syscall
  Inline syscalls made easy for windows on clang
  ☆711Updated last year
• waryas / KACE
  Emulate Drivers in RING3 with self context mapping or unicorn
  ☆341Updated 2 years ago