Alternatives and similar repositories for perses

Users that are interested in perses are comparing it to the libraries listed below

• can1357 / NtRays
  Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
  ☆623Updated 9 months ago
• crvvdev / MasterHide
  A x64 Windows Rootkit using SSDT or Hypervisor hook
  ☆557Updated 10 months ago
• snowsnowsnows / EagleVM
  Native code virtualizer for x64 binaries
  ☆505Updated 11 months ago
• mactec0 / Kernelmode-manual-mapping-through-IAT
  Manual mapping without creating any threads, with rw only access
  ☆781Updated 6 years ago
• btbd / umap
  UEFI bootkit for driver manual mapping
  ☆574Updated last year
• adrianyy / rw_socket_driver
  Driver that uses network sockets to communicate with client and read/ write protected process memory.
  ☆595Updated 6 years ago
• Cr4sh / KernelForge
  A library to develop kernel level Windows payloads for post HVCI era
  ☆466Updated 4 years ago
• anzelesnik / SyscallHook
  System call hook for Windows 10 20H1
  ☆494Updated 4 years ago
• JustasMasiulis / inline_syscall
  Inline syscalls made easy for windows on clang
  ☆727Updated last year
• vxlang / vxlang-page
  protector & obfuscator & code virtualizer
  ☆654Updated last week
• changeofpace / Self-Remapping-Code
  This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemo…
  ☆621Updated 6 years ago
• Barracudach / CallStack-Spoofer
  This tool will allow you to spoof the return addresses of your functions as well as system functions.
  ☆520Updated 3 years ago
• hfiref0x / WubbabooMark
  Debugger Anti-Detection Benchmark
  ☆373Updated 3 months ago
• btbd / smap
  DLL scatter manual mapper
  ☆795Updated 4 years ago
• Xyrem / Yumekage
  Demo proof of concept for shadow regions, and implementation of HyperDeceit.
  ☆307Updated 2 years ago
• waryas / KACE
  Emulate Drivers in RING3 with self context mapping or unicorn
  ☆353Updated 3 years ago
• kkent030315 / anycall
  x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration
  ☆364Updated 3 years ago
• adrianyy / EACReversing
  Reversing EasyAntiCheat.
  ☆569Updated 6 years ago
• thesecretclub / window_hijack
  Rendering on external windows via hijacking thread contexts
  ☆399Updated 5 years ago
• adrianyy / kernelhook
  Windows inline hooking tool.
  ☆292Updated 7 years ago
• skadro-official / skCrypter
  Compile-time, Usermode + Kernelmode, safe and lightweight string crypter library for C++11+
  ☆789Updated 4 years ago
• es3n1n / obfuscator
  PE bin2bin obfuscator
  ☆790Updated last month
• notscimmy / libelevate
  Handle elevation DKOM against ObRegisterCallbacks
  ☆319Updated 7 years ago
• guidedhacking / GH_AntiDebug_Bypass_Practice_Tool
  Guided Hacking's official tool to practice bypassing anti-debug techniques.
  ☆287Updated 6 months ago
• SamuelTulach / memhv
  Minimalistic AMD-V/SVM hypervisor with memory introspection capabilities
  ☆338Updated 8 months ago
• SamuelTulach / efi-memory
  PoC EFI runtime driver for memory r/w & kdmapper fork
  ☆556Updated 11 months ago
• Chemiculs / qengine
  C++ 20 Control Flow Obfuscation library for Windows Binaries
  ☆421Updated last month
• mike1k / HookHunter
  Analyze patches in a process
  ☆258Updated 4 years ago
• vmcall / nt-mapper
  C++17 PE manualmapper
  ☆403Updated 4 years ago
• alexvogt91 / Kernel-dll-injector
  Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module
  ☆420Updated 7 years ago