Kernel Lazy Importer
☆134Apr 13, 2024Updated last year
Alternatives and similar repositories for kli
Users that are interested in kli are comparing it to the libraries listed below
Sorting:
- Kernel driver for detecting Intel VT-x hypervisors.☆197Jul 11, 2023Updated 2 years ago
- Easy Anti PatchGuard☆223Apr 9, 2021Updated 4 years ago
- base for testing☆186Sep 28, 2024Updated last year
- ☆192Dec 8, 2021Updated 4 years ago
- Analyze patches in a process☆259Jul 28, 2021Updated 4 years ago
- ☆17Oct 31, 2022Updated 3 years ago
- Detect removed thread from PspCidTable.☆75Mar 18, 2022Updated 3 years ago
- A demonstration of hooking into the VMProtect-2 virtual machine☆24Nov 9, 2023Updated 2 years ago
- ☆34Apr 11, 2023Updated 2 years ago
- 09/2021 reversal of EasyAntiCheat driver☆235Dec 21, 2021Updated 4 years ago
- IDA scripts for hypervisor (Hyper-v) analysis and reverse engineering automation☆27Dec 7, 2021Updated 4 years ago
- ☆73Aug 31, 2022Updated 3 years ago
- ☆40Mar 23, 2023Updated 2 years ago
- A mapper that maps shellcode into loaded large page drivers☆324Apr 26, 2022Updated 3 years ago
- Disks for DMA☆141Apr 28, 2021Updated 4 years ago
- a minimalistic windows hypervisor for amd processors☆138Jun 30, 2022Updated 3 years ago
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆103Jun 26, 2023Updated 2 years ago
- mouseclassservicecallback detection via hook☆52Feb 7, 2022Updated 4 years ago
- Custom KiSystemStartup, can be used to modificate kernel before boot.☆53Apr 7, 2022Updated 3 years ago
- Emulate Drivers in RING3 with self context mapping or unicorn☆365Aug 18, 2022Updated 3 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆121Feb 8, 2022Updated 4 years ago
- Standard Kernel Library for Windows manipulation in C++☆199Jun 18, 2025Updated 8 months ago
- Type 2 Hypervisor for security research supported by AMD-V hardware assisted virtualization☆41Jan 9, 2023Updated 3 years ago
- ☆68Dec 17, 2020Updated 5 years ago
- PointerGuard is a proof-of-concept tool used to create 'guarded' pointers which disguise pointer addresses, monitor reads/writes, and pre…☆57May 23, 2022Updated 3 years ago
- DLL scatter manual mapper☆811Apr 10, 2021Updated 4 years ago
- This tool will allow you to spoof the return addresses of your functions as well as system functions.☆550Nov 12, 2022Updated 3 years ago
- ☆223Mar 11, 2023Updated 2 years ago
- Drawing from kernelmode without any hooks☆174Jul 7, 2022Updated 3 years ago
- 🪝 Various EPT hook detection approaches☆143Updated this week
- Old way for blocking NMI interrupts☆29Sep 6, 2022Updated 3 years ago
- Expanding Kernel Lazy Importer☆33Feb 16, 2023Updated 3 years ago
- neat way to detect memory read using nt layer function.☆14Aug 4, 2023Updated 2 years ago
- ☆423Jan 1, 2025Updated last year
- Code for Battleyes shellcode☆239Nov 11, 2021Updated 4 years ago
- Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.☆151Feb 12, 2022Updated 4 years ago
- Inline syscalls made easy for windows on clang☆736Jun 21, 2024Updated last year
- x64 PE-COFF virtualization driven obfuscation engine☆58Oct 14, 2022Updated 3 years ago
- kernel anticheat to test your driver against☆182Jun 16, 2025Updated 8 months ago