hfiref0x / WubbabooMark
Debugger Anti-Detection Benchmark
☆310Updated last year
Alternatives and similar repositories for WubbabooMark:
Users that are interested in WubbabooMark are comparing it to the libraries listed below
- Demo proof of concept for shadow regions, and implementation of HyperDeceit.☆276Updated last year
- An x86-64 Code Virtualizer☆243Updated 5 months ago
- Browse Page Tables on Windows (Page Table Viewer)☆195Updated 2 years ago
- x86 PE Mutator☆216Updated 2 years ago
- Native code virtualizer for x64 binaries☆469Updated 2 months ago
- Static deobfuscator for Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.☆263Updated 7 months ago
- Collection of hypervisor detections☆220Updated 5 months ago
- Bypassing PatchGuard on modern x64 systems☆253Updated last year
- Minimalistic AMD-V/SVM hypervisor with memory introspection capabilities☆235Updated 2 weeks ago
- Bootkit for Windows Sandbox to disable DSE/PatchGuard.☆271Updated 5 months ago
- Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks☆344Updated 4 months ago
- Kernel driver for detecting Intel VT-x hypervisors.☆176Updated last year
- compile-time control flow obfuscation using mba☆181Updated last year
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆244Updated 2 years ago
- Simple x86/x86_64 instruction level obfuscator based on a basic SBI engine☆264Updated 2 years ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆287Updated 2 years ago
- Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.☆579Updated last month
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆192Updated 4 months ago
- IDA Pro plugin to make bitfield accesses easier to grep☆231Updated 3 weeks ago
- Emulate Drivers in RING3 with self context mapping or unicorn☆330Updated 2 years ago
- Voyager - A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)☆271Updated last year
- ☆260Updated 2 months ago
- Analyze patches in a process☆249Updated 3 years ago
- Load your driver like win32k.sys☆252Updated 2 years ago
- Advanced driver monitoring utility.☆206Updated 2 years ago
- HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate oper…☆359Updated last year
- State of the art DLL injector that took 20 minutes to make☆210Updated last year
- A proof of concept demonstrating instrumentation callbacks on Windows 10 21h1 with a TLS variable to ensure all syscalls are caught.☆126Updated 3 years ago
- C++ library for parsing and manipulating PE files statically and dynamically.☆85Updated last year