Alternatives and similar repositories for GH_AntiDebug_Bypass_Practice_Tool:

Users that are interested in GH_AntiDebug_Bypass_Practice_Tool are comparing it to the libraries listed below

• Xyrem / Yumekage
  Demo proof of concept for shadow regions, and implementation of HyperDeceit.
  ☆275Updated last year
• mike1k / perses
  X86 Mutation Engine with Portable Executable compatibility.
  ☆485Updated 2 years ago
• hfiref0x / WubbabooMark
  Debugger Anti-Detection Benchmark
  ☆332Updated last year
• Barracudach / CallStack-Spoofer
  This tool will allow you to spoof the return addresses of your functions as well as system functions.
  ☆448Updated 2 years ago
• mike1k / HookHunter
  Analyze patches in a process
  ☆251Updated 3 years ago
• charliewolfe / Stealthy-Kernelmode-Injector
  Manual mapper that uses PTE manipulation, Virtual Address Descriptor (VAD) manipulation, and forceful memory allocation to hide executabl…
  ☆323Updated 3 years ago
• M-r-J-o-h-n / SWH-Injector
  An Injector that can inject dll into game process protected by anti cheat using SetWindowsHookEx.
  ☆242Updated 5 years ago
• notscimmy / libelevate
  Handle elevation DKOM against ObRegisterCallbacks
  ☆299Updated 6 years ago
• crvvdev / MasterHide
  A x64 Windows Rootkit using SSDT or Hypervisor hook
  ☆535Updated 4 months ago
• notpidgey / EagleVM
  Native code virtualizer for x64 binaries
  ☆483Updated 4 months ago
• Oliver-1-1 / GhostMapper
  ☆280Updated 3 weeks ago
• kkent030315 / anycall
  x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration
  ☆318Updated 2 years ago
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆143Updated 2 years ago
• VollRagm / lpmapper
  A mapper that maps shellcode into loaded large page drivers
  ☆274Updated 3 years ago
• alexvogt91 / Kernel-dll-injector
  Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module
  ☆416Updated 6 years ago
• VollRagm / PTView
  Browse Page Tables on Windows (Page Table Viewer)
  ☆198Updated 3 years ago
• adrianyy / rw_socket_driver
  Driver that uses network sockets to communicate with client and read/ write protected process memory.
  ☆535Updated 6 years ago
• d35ha / xObf
  Simple x86/x86_64 instruction level obfuscator based on a basic SBI engine
  ☆267Updated 2 years ago
• anzelesnik / SyscallHook
  System call hook for Windows 10 20H1
  ☆485Updated 3 years ago
• can1357 / hvdetecc
  Collection of hypervisor detections
  ☆236Updated 7 months ago
• stevemk14ebr / RETools
  My reversing tools. Some custom, some not.
  ☆202Updated last year
• Cr4sh / KernelForge
  A library to develop kernel level Windows payloads for post HVCI era
  ☆401Updated 3 years ago
• can1357 / NtRays
  Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
  ☆593Updated 3 months ago
• mactec0 / Kernelmode-manual-mapping-through-IAT
  Manual mapping without creating any threads, with rw only access
  ☆740Updated 5 years ago
• JustasMasiulis / inline_syscall
  Inline syscalls made easy for windows on clang
  ☆703Updated 10 months ago
• nelfo / Milfuscator
  x86 PE Mutator
  ☆215Updated 2 years ago
• armvirus / SinMapper
  usermode driver mapper that forcefully loads any signed kernel driver (legit cert) with a big enough section (example: .data, .rdata) to …
  ☆418Updated 3 years ago
• gmh5225 / CallMeWin32kDriver
  Load your driver like win32k.sys
  ☆252Updated 2 years ago
• thesecretclub / SandboxBootkit
  Bootkit for Windows Sandbox to disable DSE/PatchGuard.
  ☆278Updated 6 months ago
• VoidSec / DriverBuddyReloaded
  Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks
  ☆354Updated 6 months ago