mohuihui / antispyLinks
AntiSpy is a free but powerful anti virus and rootkits toolkit.It offers you the ability with the highest privileges that can detect,analyze and restore various kernel modifications and hooks.With its assistance,you can easily spot and neutralize malwares hidden from normal detectors.
☆1,102Updated 4 years ago
Alternatives and similar repositories for antispy
Users that are interested in antispy are comparing it to the libraries listed below
Sorting:
- 🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc☆1,909Updated 2 years ago
- windows kernel security development☆2,014Updated 2 years ago
- A free but powerful Windows kernel research tool.☆2,549Updated 8 months ago
- Hook system calls, context switches, page faults and more.☆2,551Updated 2 years ago
- Windows Object Explorer 64-bit☆1,774Updated this week
- SuperDllHijack:A general DLL hijack technology, don't need to manually export the same function interface of the DLL, so easy! 一种通用Dll劫持技…☆963Updated 3 years ago
- Syscall Monitor is a system monitor program (like Sysinternal's Process Monitor) using Intel VT-X/EPT for Windows7+☆742Updated 7 years ago
- Post-exploitation tool for hiding processes from monitoring applications☆740Updated 2 years ago
- Turn off PatchGuard in real time for win7 (7600) ~ later☆1,013Updated 3 years ago
- Kernel Driver Utility☆2,169Updated last week
- VirtualKD-Redux - A revival and modernization of VirtualKD☆897Updated last year
- WinDBG Anti-RootKit Extension☆632Updated 4 years ago
- Hiding kernel-driver for x86/x64.☆2,368Updated 3 weeks ago
- Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode☆2,310Updated last year
- xAnalyzer plugin for x64dbg☆1,102Updated 3 years ago
- Driver loader for bypassing Windows x64 Driver Signature Enforcement☆1,124Updated 5 years ago
- hijack dll Source Code Generator. support x86/x64☆807Updated 4 years ago
- Converts a DLL into EXE☆814Updated last year
- Plugin manager for x64dbg☆861Updated this week
- RpcView is a free tool to explore and decompile Microsoft RPC interfaces☆982Updated last year
- A static devirtualizer for VMProtect x64 3.x. powered by VTIL.☆2,021Updated 3 years ago
- Some ways to inject a DLL into a alive process☆361Updated 7 years ago
- Hook system calls on Windows by using Kaspersky's hypervisor☆1,203Updated last year
- Linker/Compiler/Tool detector for Windows, Linux and MacOS.☆555Updated this week
- A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl☆1,234Updated 3 weeks ago
- Protected Processes Light Killer☆935Updated 2 years ago
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,351Updated 3 weeks ago
- proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC☆1,232Updated last year
- PE Tools - Portable executable (PE) manipulation toolkit☆1,105Updated 7 years ago
- Native API header files for the System Informer project.☆1,199Updated 3 weeks ago