Alternatives and similar repositories for cpu_duck

Users that are interested in cpu_duck are comparing it to the libraries listed below

• killvxk / awesome-bootkit
  Bootkits
  ☆18Updated 2 years ago
• orca-eaa5a / mac-defender
  ☆11Updated 3 years ago
• h0li3 / mpengine_diskus
  参考taviso的代码逆向一下mpengine.dll
  ☆20Updated 3 years ago
• za233 / AilProtect
  a code virtualizer based on angr
  ☆32Updated 2 years ago
• therealdreg / ida_bochs_windows
  Helper script for Windows kernel debugging with IDA Pro on native Bochs debugger (including PDB symbols)
  ☆61Updated 2 years ago
• howmp / COMFinder
  IDA plugin for COM
  ☆48Updated 3 years ago
• LegendSaber / exp_x64
  ☆25Updated 3 years ago
• huoji120 / Heuristic_antivirus_engine_by_huoji
  基于UC的启发式杀毒引擎[还没做完]
  ☆35Updated 4 years ago
• RevSpBird / HightLight
  a plugin for ida of version 7.2 to help know F5 window codes better
  ☆54Updated 6 years ago
• DFRWS-memory-subversion / DFRWS-USA-2020
  ☆12Updated 4 years ago
• therealdreg / pdbdump_bochs
  Dump PDB Symbols including support for Bochs Debugging Format (with wine support)
  ☆14Updated 2 years ago
• garzon / obfacros
  obfacros - a set of C++ macros that can be used to obfuscate your c/c++ code, to make executables harder for reverse-engineering.
  ☆46Updated 6 years ago
• cbwang505 / poolfengshui
  笔者的在原作者池风水利用工具(以下简称工具)基础上进行二次开发,新增了全自动获取内核调试模块符号的偏移量及配置参数和不同漏洞利用方式优化等功能, 解决了不同Windows版本适配问题,工具包括适配驱动和利用程序两部分组成,实现了在Windows 10 19H1之后任意版本包…
  ☆77Updated 3 years ago
• IlayTheVuln / Kernelious-Rootkit
  a dkom rootkit that targets windows x64 systems. the rootkit hooks and edits criticl memory sections in order to hide different resources…
  ☆18Updated 2 years ago
• y11en / PEBFake
  PEBFake(修改PEB 伪装当前进程路径、参数等)
  ☆53Updated 4 years ago
• huoji120 / Etw-Syscall
  https://key08.com/index.php/2021/10/19/1375.html
  ☆71Updated 3 years ago
• waleedassar / SyscallNumberFinder
  ☆33Updated 4 years ago
• d1nn3r / RECLASSIFY
  This is an IDA plugin to recover class information from C++ binary.
  ☆19Updated 5 years ago
• JiaJinRong12138 / CVE-2021-36955-EXP
  CVE-2021-36955
  ☆14Updated 2 years ago
• KaLendsi / CVE-2020-1054
  ☆20Updated 5 years ago
• huoji120 / Microsoft_Kernel_Memory_Leak
  win32kbase!NtDCompositionCommitSynchronizationObject and win32kbase!NtGdiGetCertificate
  ☆16Updated 4 years ago
• waleedassar / CVE-2022-24483
  POC For CVE-2022-24483
  ☆14Updated 3 years ago
• gognl / VMBR
  A VMBR (Virtual-Machine Based Rootkit) which runs a guest OS and sends the attacker its data
  ☆28Updated last year
• DragonQuestHero / WindowsKernelPrivateSymbolsDump
  Win7内核私有符号结构转储
  ☆68Updated 4 years ago
• killvxk / awesome_code_windows_kernel
  ☆17Updated 2 years ago
• leommxj / AphroditeF5
  ida pro collapse plugin
  ☆28Updated 2 years ago
• aphage / wow64-gate-hook
  Wow64 Heaven's Gate Hook
  ☆29Updated 4 years ago
• tcpie / hook_any_x64
  Easily hook WIN32 x64 functions
  ☆18Updated 8 months ago
• kernweak / Syscall-Monitor
  大表哥的Syscall-Monitor
  ☆34Updated 6 years ago
• fIappy / FpVTProject
  intel vt-x hypervisor ept
  ☆24Updated 5 years ago