Alternatives and similar repositories for Self-Modifying-Code

Users that are interested in Self-Modifying-Code are comparing it to the libraries listed below

• kukrimate / grr
  AMD SVM hypervisor rootkit proof of concept
  ☆48Updated last year
• tandasat / HelloIommuPkg
  The sample DXE runtime driver demonstrating how to program DMA remapping.
  ☆62Updated last year
• DProvinciani / pt-detector
  Code-Reuse Exploits detection using Intel Processor Trace
  ☆28Updated 7 years ago
• KelvinMsft / Notes
  Open Course for diving security internal
  ☆51Updated 5 years ago
• SinaKarvandi / windbg2ida
  Windbg2ida lets you dump each step in Windbg then shows these steps in IDA
  ☆74Updated last year
• 0vercl0k / symbolizer
  A fast execution trace symbolizer for Windows.
  ☆131Updated last year
• synacktiv / vmx_intrinsics
  VMX intrinsics plugin for Hex-Rays decompiler
  ☆71Updated 5 years ago
• heyitsanthony / vexllvm
  Decode machine code into VEX IR and translate into LLVM IR
  ☆28Updated 6 years ago
• SinaKarvandi / x64-Driver-Inline-Assembly
  This is a simple driver with x64 inline assembly
  ☆57Updated 5 years ago
• vtil-project / VTIL-Utils
  VTIL command line utility
  ☆27Updated 3 years ago
• redplait / armpatched
  clone of armadillo patched for windows
  ☆47Updated 11 months ago
• peperunas / pasticciotto
  Polymorphic VM and PoliCTF '17 reversing challenge.
  ☆73Updated last year
• pgarba / UniTaint
  PoC for a taint based attack on VMProtect
  ☆121Updated 6 years ago
• JaanusKaapPublic / BlogHyperV
  Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/
  ☆57Updated 5 years ago
• SinaKarvandi / Pinitor
  An API Monitor based on Instrumentation
  ☆44Updated 7 years ago
• hsheep / vmpanalysis
  VMProtect analysis script
  ☆55Updated 5 years ago
• calware / HV-Playground
  A simple and heavily documented series of test hypervisors built for 64-bit Windows 10 systems running under Intel's VT-x
  ☆33Updated 4 years ago
• intel / vmtaint
  Full-VM taint analysis with Xen, Intel(R) Processor Trace and Triton.
  ☆41Updated 2 years ago
• IntroVirt / IntroVirt
  IntroVirt is an guest introspection library for KVM
  ☆56Updated last year
• yardenshafir / KernelDataStructureFinder
  Driver and WinDBG scripts to dump information about all resources and lookaside lists
  ☆67Updated 5 years ago
• IgorKorkin / AllMemPro
  AllMemPro
  ☆46Updated 7 years ago
• KelvinMsft / DeviceMon
  VT-based PCI device monitor (SPI)
  ☆154Updated 4 years ago
• relyze-ltd / LibTCGTranslate
  A library to translate native code for multiple architectures into Tiny Code Generator (TCG) based intermediate representation (IR), base…
  ☆47Updated 5 years ago
• 0vercl0k / pywinhv
  Python bindings for the Microsoft Hypervisor Platform APIs.
  ☆79Updated 6 years ago
• nccgroup / ICPin
  An Integrity-Check Monitoring Pintool
  ☆58Updated 4 years ago
• bluefrostsecurity / Meltdown-KVA-Shadow-Leak
  ☆47Updated 5 years ago
• mrphrazer / r2con2020_deobfuscation
  ☆76Updated 3 years ago
• ajkhoury / Windbg2Struct
  Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure
  ☆36Updated last year
• JKornev / cfgdump
  Windbg extension that allows you analyze Control Flow Guard map
  ☆36Updated 3 years ago
• imugee / xdv
  XDV is disassembler or debugger that works based on the extension plugin.
  ☆57Updated 6 years ago