momo5502 / hypervisorLinks
π§ͺ Hypervisor with EPT hooking support.
β226Updated last month
Alternatives and similar repositories for hypervisor
Users that are interested in hypervisor are comparing it to the libraries listed below
Sorting:
- alternative smm driver for ryzen motherboardsβ148Updated 7 months ago
- Demo proof of concept for shadow regions, and implementation of HyperDeceit.β279Updated 2 years ago
- Collection of hypervisor detectionsβ236Updated 8 months ago
- Minimalistic AMD-V/SVM hypervisor with memory introspection capabilitiesβ262Updated 3 months ago
- πͺ Different aproaches to detecting EPT hooksβ109Updated 3 years ago
- Debugger Anti-Detection Benchmarkβ333Updated last year
- VAC3 (Valve Anti-Cheat 3) module emulatorβ98Updated 4 years ago
- Ghetto user mode emulation of Windows kernel drivers.β139Updated 7 months ago
- Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasksβ361Updated 7 months ago
- Emulate Drivers in RING3 with self context mapping or unicornβ338Updated 2 years ago
- Browse Page Tables on Windows (Page Table Viewer)β202Updated 3 years ago
- IDA Pro plugin to make bitfield accesses easier to grepβ238Updated 3 months ago
- Rusty Hypervisor - Windows UEFI Blue Pill Type-1 Hypervisor in Rust (Codename: Illusion)β263Updated 9 months ago
- β143Updated 4 years ago
- Universal x86/x64 VMProtect 2.0-3.X Import fixerβ5Updated 3 years ago
- β206Updated this week
- Static deobfuscator for Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.β282Updated 10 months ago
- Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.β599Updated 4 months ago
- 09/2021 reversal of EasyAntiCheat driverβ216Updated 3 years ago
- Native code virtualizer for x64 binariesβ485Updated 5 months ago
- x86-64 code/pe virtualizerβ188Updated 6 months ago
- A proof of concept demonstrating instrumentation callbacks on Windows 10 21h1 with a TLS variable to ensure all syscalls are caught.β136Updated 3 years ago
- Internally injected C++ DLL that dumps VFTables with RTTI data, Still In Developmentβ106Updated last year
- Capcom driver exploit wrapperβ123Updated 6 years ago
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withouβ¦β203Updated 7 months ago
- C++ library for parsing and manipulating PE files statically and dynamically.β88Updated last year
- Hooking kernel functions by abusing alignmentβ241Updated 4 years ago
- compile-time control flow obfuscation using mbaβ185Updated last year
- unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared uβ¦β60Updated last year
- SimpleSvmHook is a research purpose hypervisor for Windows on AMD processors.β397Updated 4 years ago