hypervisor/kli external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

hypervisor/kli

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/hypervisor/kli)

Close

hypervisor / kliView on GitHubMore

• External links
• Readme badge

Kernel Lazy Importer

☆134Apr 13, 2024Updated last year

Alternatives and similar repositories for kli

Users that are interested in kli are comparing it to the libraries listed below

• jonomango / nohv

  View on GitHub
  Kernel driver for detecting Intel VT-x hypervisors.
  ☆197Jul 11, 2023Updated 2 years ago
• armasm / EasyAntiPatchGuard

  View on GitHub
  Easy Anti PatchGuard
  ☆223Apr 9, 2021Updated 4 years ago
• ekknod / acdrv

  View on GitHub
  base for testing
  ☆186Sep 28, 2024Updated last year
• weak1337 / NO_ACCESS_Protection

  View on GitHub
  ☆192Dec 8, 2021Updated 4 years ago
• mike1k / HookHunter

  View on GitHub
  Analyze patches in a process
  ☆259Jul 28, 2021Updated 4 years ago
• alfarom256 / MinifilterResearch

  View on GitHub
  ☆17Oct 31, 2022Updated 3 years ago
• KANKOSHEV / Detect-HiddenThread-via-KPRCB

  View on GitHub
  Detect removed thread from PspCidTable.
  ☆75Mar 18, 2022Updated 3 years ago
• backengineering / vmhook

  View on GitHub
  A demonstration of hooking into the VMProtect-2 virtual machine
  ☆24Nov 9, 2023Updated 2 years ago
• 1401199262 / HookSwapContext

  View on GitHub
  ☆34Apr 11, 2023Updated 2 years ago
• ch4ncellor / EAC-Reversal

  View on GitHub
  09/2021 reversal of EasyAntiCheat driver
  ☆235Dec 21, 2021Updated 4 years ago
• BehroozAbbassi / hyperv-research-scripts

  View on GitHub
  IDA scripts for hypervisor (Hyper-v) analysis and reverse engineering automation
  ☆27Dec 7, 2021Updated 4 years ago
• 1401199262 / NMIStackWalk

  View on GitHub
  ☆73Aug 31, 2022Updated 3 years ago
• HyperSine / siren-hypervisor

  View on GitHub
  ☆40Mar 23, 2023Updated 2 years ago
• VollRagm / lpmapper

  View on GitHub
  A mapper that maps shellcode into loaded large page drivers
  ☆324Apr 26, 2022Updated 3 years ago
• btbd / ddma

  View on GitHub
  Disks for DMA
  ☆141Apr 28, 2021Updated 4 years ago
• sariaki / amd-hypervisor

  View on GitHub
  a minimalistic windows hypervisor for amd processors
  ☆138Jun 30, 2022Updated 3 years ago
• SamuelTulach / DirectPageManipulation

  View on GitHub
  A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy
  ☆103Jun 26, 2023Updated 2 years ago
• KANKOSHEV / Detect-MouseClassServiceCallback

  View on GitHub
  mouseclassservicecallback detection via hook
  ☆52Feb 7, 2022Updated 4 years ago
• ekknod / KiSystemStartupMeme

  View on GitHub
  Custom KiSystemStartup, can be used to modificate kernel before boot.
  ☆53Apr 7, 2022Updated 3 years ago
• waryas / KACE

  View on GitHub
  Emulate Drivers in RING3 with self context mapping or unicorn
  ☆365Aug 18, 2022Updated 3 years ago
• KANKOSHEV / Detect-KeAttachProcess

  View on GitHub
  Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.
  ☆121Feb 8, 2022Updated 4 years ago
• cutecatsandvirtualmachines / SKLib

  View on GitHub
  Standard Kernel Library for Windows manipulation in C++
  ☆199Jun 18, 2025Updated 8 months ago
• ColeStrickler / 1337Visor

  View on GitHub
  Type 2 Hypervisor for security research supported by AMD-V hardware assisted virtualization
  ☆41Jan 9, 2023Updated 3 years ago
• ajkhoury / Errata1337

  View on GitHub
  ☆68Dec 17, 2020Updated 5 years ago
• charliewolfe / PointerGuard

  View on GitHub
  PointerGuard is a proof-of-concept tool used to create 'guarded' pointers which disguise pointer addresses, monitor reads/writes, and pre…
  ☆57May 23, 2022Updated 3 years ago
• btbd / smap

  View on GitHub
  DLL scatter manual mapper
  ☆811Apr 10, 2021Updated 4 years ago
• Barracudach / CallStack-Spoofer

  View on GitHub
  This tool will allow you to spoof the return addresses of your functions as well as system functions.
  ☆550Nov 12, 2022Updated 3 years ago
• 1401199262 / Hook-KdTrap

  View on GitHub
  ☆223Mar 11, 2023Updated 2 years ago
• Sentient111 / KernelDrawing

  View on GitHub
  Drawing from kernelmode without any hooks
  ☆174Jul 7, 2022Updated 3 years ago
• momo5502 / ept-hook-detection

  View on GitHub
  🪝 Various EPT hook detection approaches
  ☆143Updated this week
• ekknod / Nmi

  View on GitHub
  Old way for blocking NMI interrupts
  ☆29Sep 6, 2022Updated 3 years ago
• gmh5225 / kli-ex

  View on GitHub
  Expanding Kernel Lazy Importer
  ☆33Feb 16, 2023Updated 3 years ago
• vxcall / ZwDetectMemoryRead

  View on GitHub
  neat way to detect memory read using nt layer function.
  ☆14Aug 4, 2023Updated 2 years ago
• wallds / NoVmpy

  View on GitHub
  ☆423Jan 1, 2025Updated last year
• weak1337 / BE-Shellcode

  View on GitHub
  Code for Battleyes shellcode
  ☆239Nov 11, 2021Updated 4 years ago
• Deputation / hygieia

  View on GitHub
  Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.
  ☆151Feb 12, 2022Updated 4 years ago
• JustasMasiulis / inline_syscall

  View on GitHub
  Inline syscalls made easy for windows on clang
  ☆736Jun 21, 2024Updated last year
• Lima-X / Singularity

  View on GitHub
  x64 PE-COFF virtualization driven obfuscation engine
  ☆58Oct 14, 2022Updated 3 years ago
• vasie1337 / kernel-anticheat

  View on GitHub
  kernel anticheat to test your driver against
  ☆182Jun 16, 2025Updated 8 months ago