Alternatives and similar repositories for grr

Users that are interested in grr are comparing it to the libraries listed below

• b-irb / sauron
  Simple Intel VT-x type-2 hypervisor for 64-bit Linux.
  ☆19Updated 4 years ago
• 3intermute / hvICE
  hypervisor enforced patch protection for the linux kernel with xen + libvmi, libvmi KASLR offset spoofer
  ☆32Updated last year
• nlykkei / llvm-ir-obfuscation
  Collection of obfuscation, tamper-proofing, and watermarking algorithms targeting LLVM IR.
  ☆72Updated 5 years ago
• ergot86 / hyperv_stuff
  Hyper-V related resources
  ☆31Updated last year
• bluefrostsecurity / Meltdown-KVA-Shadow-Leak
  ☆45Updated 4 years ago
• fvrmatteo / oracle-synthesis-meets-equality-saturation
  ☆25Updated this week
• redplait / armpatched
  clone of armadillo patched for windows
  ☆47Updated 7 months ago
• vtil-project / VTIL-Utils
  VTIL command line utility
  ☆27Updated 3 years ago
• BehroozAbbassi / VmwpMonitor
  ☆40Updated 3 years ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year
• omerk2511 / NotifyRoutinesResearch
  A research project about Windows notify routines.
  ☆35Updated 4 years ago
• POPFD / cascade
  A thin introspection hypervisor framework that allows for low level resource manipulation.
  ☆13Updated last year
• shareef12 / driveranalyzer
  Binary Ninja plugin to perform automated analysis of Windows drivers
  ☆17Updated 5 years ago
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆65Updated last year
• irql / nokd
  reverse engineering of the windows nt kernel debugger protocol & reimplementation.
  ☆25Updated 10 months ago
• DenuvoSoftwareSolutions / DVRT
  How Meltdown and Spectre haunt Anti-Cheat: DVRT details
  ☆21Updated 9 months ago
• synacktiv / vmx_intrinsics
  VMX intrinsics plugin for Hex-Rays decompiler
  ☆71Updated 5 years ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆72Updated last year
• ioncodes / pooldump
  ☆29Updated 3 years ago
• archercreat / llvm_stuff
  LLVM based devirtualization PoC’s.
  ☆20Updated 3 years ago
• ioncodes / rapid-kdbg-hyperv
  ☆15Updated 2 years ago
• Nitr0-G / SVM-Hypervisor
  This is a ring -1 header framework in order to simplify the creation of hypervisors on SVM
  ☆22Updated last year
• yardenshafir / DpcWait
  Driver demonstrating how to register a DPC to asynchronously wait on an object
  ☆49Updated 4 years ago
• POPFD / HypervisorBase
  A library for intel VT-x hypervisor functionality supporting EPT shadowing.
  ☆50Updated 4 years ago
• r3bb1t / bin_lift
  Rust library for lifting raw binary data to LLVM IR
  ☆51Updated last month
• cassanof / safe-llvm
  LLVM Without The ROP Gadgets!
  ☆26Updated last year
• Toroto006 / windows-kernel-driver-pipeline
  This master thesis project continuously collects and analyses Microsoft Windows kernel drivers using static and dynamic methods to help s…
  ☆20Updated 6 months ago
• ZehMatt / zyemu
  x86-64 user mode emulation using Zydis
  ☆46Updated 4 months ago
• milankovo / instrlen
  Custom instruction length for hex-rays
  ☆18Updated 5 months ago
• archercreat / vdk
  vdk is a set of utilities used to help with exploitation of a vulnerable driver.
  ☆40Updated 3 years ago