hfiref0x / WubbabooMarkLinks
Debugger Anti-Detection Benchmark
☆356Updated 2 weeks ago
Alternatives and similar repositories for WubbabooMark
Users that are interested in WubbabooMark are comparing it to the libraries listed below
Sorting:
- Demo proof of concept for shadow regions, and implementation of HyperDeceit.☆293Updated 2 years ago
- Collection of hypervisor detections☆261Updated 11 months ago
- Native code virtualizer for x64 binaries☆500Updated 8 months ago
- Browse Page Tables on Windows (Page Table Viewer)☆213Updated 3 years ago
- Static deobfuscator for Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.☆296Updated last year
- Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks☆377Updated last month
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆224Updated 10 months ago
- Single header version of System Informer's phnt library.☆227Updated last week
- HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate oper…☆374Updated 2 years ago
- Bootkit for Windows Sandbox to disable DSE/PatchGuard.☆300Updated 10 months ago
- An x86-64 Code Virtualizer☆277Updated 11 months ago
- Bypassing PatchGuard on modern x64 systems☆265Updated 2 years ago
- Simple x86/x86_64 instruction level obfuscator based on a basic SBI engine☆274Updated 2 years ago
- x86 PE Mutator☆225Updated 2 years ago
- memory introspection and reverse engineering hypervisor powered by leveraging Hyper-V☆312Updated last month
- A collection of various vulnerable (mostly physical memory exposing) drivers.☆400Updated 3 years ago
- Hooking Windows' exception dispatcher to protect process's PML4☆191Updated 7 months ago
- Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!☆372Updated 4 months ago
- Advanced driver monitoring utility.☆216Updated 3 years ago
- compile-time control flow obfuscation using mba☆191Updated 2 years ago
- Analyze patches in a process☆256Updated 4 years ago
- Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.☆612Updated 6 months ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆339Updated 3 years ago
- Load your driver like win32k.sys☆254Updated 3 years ago
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆149Updated last year
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆252Updated 2 years ago
- IDA Pro plugin to make bitfield accesses easier to grep☆244Updated 3 weeks ago
- ☆234Updated 2 months ago
- Emulate Drivers in RING3 with self context mapping or unicorn☆347Updated 3 years ago
- Windows inline hooking tool.☆282Updated 6 years ago