Alternatives and similar repositories for grr:

Users that are interested in grr are comparing it to the libraries listed below

• b-irb / sauron
  Simple Intel VT-x type-2 hypervisor for 64-bit Linux.
  ☆18Updated 4 years ago
• nlykkei / llvm-ir-obfuscation
  Collection of obfuscation, tamper-proofing, and watermarking algorithms targeting LLVM IR.
  ☆71Updated 5 years ago
• ergot86 / hyperv_stuff
  Hyper-V related resources
  ☆30Updated last year
• shareef12 / driveranalyzer
  Binary Ninja plugin to perform automated analysis of Windows drivers
  ☆17Updated 5 years ago
• POPFD / cascade
  A thin introspection hypervisor framework that allows for low level resource manipulation.
  ☆13Updated last year
• 3intermute / hvICE
  hypervisor enforced patch protection for the linux kernel with xen + libvmi, libvmi KASLR offset spoofer
  ☆32Updated last year
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆72Updated last year
• redplait / armpatched
  clone of armadillo patched for windows
  ☆47Updated 6 months ago
• archercreat / llvm_stuff
  LLVM based devirtualization PoC’s.
  ☆20Updated 3 years ago
• pinwhell / MSPDBX
  Lightweight PDB symbol parser and resolver
  ☆24Updated 6 months ago
• omerk2511 / NotifyRoutinesResearch
  A research project about Windows notify routines.
  ☆35Updated 4 years ago
• bluefrostsecurity / Meltdown-KVA-Shadow-Leak
  ☆45Updated 4 years ago
• cassanof / safe-llvm
  LLVM Without The ROP Gadgets!
  ☆26Updated last year
• samrussell / obfus
  Playing with LLVM passes
  ☆36Updated last year
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year
• ergrelet / triton-bn
  Binary Ninja plugin that can be used to apply Triton's dead store eliminitation pass on basic blocks or functions.
  ☆59Updated 9 months ago
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆64Updated last year
• DenuvoSoftwareSolutions / DVRT
  How Meltdown and Spectre haunt Anti-Cheat: DVRT details
  ☆21Updated 8 months ago
• irql / nokd
  reverse engineering of the windows nt kernel debugger protocol & reimplementation.
  ☆23Updated 10 months ago
• Air14 / SmmLoader
  Runtime smm module loader
  ☆33Updated 2 years ago
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆82Updated 4 years ago
• NudistBeaaach / Chained-CFG-obfuscation-pass
  LLVM obfuscation pass, flattening at the basic block's level and turning each basic block into a dispacher and each instruction into a ne…
  ☆46Updated 3 years ago
• Gbps / CapcomLib
  A reflexive driver loader to bypass Windows DSE (featuring a custom PE loader)
  ☆41Updated 6 years ago
• b-irb / PigPEI
  PEIM (UEFI) bootkit targeting OVMF (EDK2)
  ☆34Updated last year
• POPFD / HypervisorBase
  A library for intel VT-x hypervisor functionality supporting EPT shadowing.
  ☆49Updated 4 years ago
• icicle-emu / icicle-python
  Python bindings for the Icicle emulator.
  ☆34Updated 3 weeks ago
• malware-unicorn / pteroioctl-hook
  A driver to implement IOCTL hooking
  ☆24Updated 3 years ago
• intel / unicorn-for-efi
  Unicorn Engine port for UEFI firmware
  ☆44Updated last month
• JaanusKaapPublic / BlogHyperV
  Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/
  ☆57Updated 4 years ago
• ioncodes / pooldump
  ☆29Updated 3 years ago