Alternatives and similar repositories for al-khaser:

Users that are interested in al-khaser are comparing it to the libraries listed below

• zhuhuibeishadiao / JunkDriveOpenSource
  Some garbage drivers written for getting started
  ☆64Updated 5 years ago
• d366 / DarkMMap
  Manual PE image mapper
  ☆62Updated 11 years ago
• h4xu3lyn / FuckPg
  Analysing and defeating PatchGuard universally
  ☆34Updated 4 years ago
• johnsonjason / Remote-Thread-Executor
  Code injection by hijacking threads in Windows 32-bit applications
  ☆43Updated 6 years ago
• 0ffffffffh / system_call_hook_win10_1903
  This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness
  ☆51Updated 5 years ago
• MellowNight / IOCTL-hook
  realExtern.sys driver
  ☆65Updated 4 years ago
• rbapat / KernelInjector
  Stealthy Injector that leverages a vulnerable driver and other exploits to remain undetected
  ☆36Updated 6 years ago
• MellowNight / Anti-debug
  A simple anti debug program (with kernel mode callbacks)
  ☆42Updated 4 years ago
• can1357 / safe_capcom
  Capcom wrapper with safety in mind.
  ☆80Updated 6 years ago
• anzelesnik / MySyscall
  Example of hijacking system calls via function pointer tables
  ☆32Updated 3 years ago
• Cr4sh / PTBypass-PoC
  Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.
  ☆75Updated 13 years ago
• SamLarenN / CapcomDKOM
  My take on the capcom driver vulnerability
  ☆26Updated 7 years ago
• ldebug / BetaShield
  BetaShield Windows x86 Ring3 Anticheat v2
  ☆37Updated 8 years ago
• luciouskami / RemoveFlagTest
  Another method to anti ThreadHideFromDebugger
  ☆35Updated 5 years ago
• Rat431 / ColdHide
  (DEPRECATED) A simple anti-anti debug library for Windows
  ☆29Updated 4 years ago
• mq1n / HandleHijack
  Windows handle stealing POC with NtDuplicateObject
  ☆41Updated 7 years ago
• johnsonjason / KeProcessOverlay
  Reading/writing memory from kernel-mode
  ☆21Updated 7 years ago
• alexvogt91 / NetDriver
  kernel-mode TDI client which can send and receive HTTP requests
  ☆55Updated 6 years ago
• icewall / ForceDelete
  Windows driver including couple different techniques for file removal when regular operation isn't possible.
  ☆67Updated 8 years ago
• stormshield / Beholder-Win32
  A sample on how to inject a DLL from a kernel driver
  ☆61Updated 8 years ago
• moukayz / KernelDriverDemo
  ☆24Updated 5 years ago
• gigabitwize / dank
  Driver Loader/BE Bypass/Win Malware(lol)
  ☆34Updated 5 years ago
• yqsy / VT_demo
  ☆25Updated 7 years ago
• tandasat / capstone
  Capstone disassembly/disassembler framework: Core (Arm, Arm64, M68K, Mips, PPC, Sparc, SystemZ, X86, X86_64, XCore) + bindings (Python, J…
  ☆14Updated 5 years ago
• mq1n / Wow64SyscallHook
  Wow64 syscall hook
  ☆40Updated 7 years ago
• ajkhoury / Errata1337
  ☆67Updated 4 years ago