Alternatives and similar repositories for hypervisor:

Users that are interested in hypervisor are comparing it to the libraries listed below

• ekknod / smm
  alternative smm driver for ryzen motherboards
  ☆137Updated 5 months ago
• can1357 / hvdetecc
  Collection of hypervisor detections
  ☆226Updated 6 months ago
• SamuelTulach / memhv
  Minimalistic AMD-V/SVM hypervisor with memory introspection capabilities
  ☆247Updated last month
• Xyrem / Yumekage
  Demo proof of concept for shadow regions, and implementation of HyperDeceit.
  ☆276Updated last year
• hfiref0x / WubbabooMark
  Debugger Anti-Detection Benchmark
  ☆324Updated last year
• ioncodes / vacation3-emu
  VAC3 (Valve Anti-Cheat 3) module emulator
  ☆97Updated 4 years ago
• VollRagm / PTView
  Browse Page Tables on Windows (Page Table Viewer)
  ☆196Updated 2 years ago
• waryas / KACE
  Emulate Drivers in RING3 with self context mapping or unicorn
  ☆333Updated 2 years ago
• ergrelet / themida-unmutate
  Static deobfuscator for Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.
  ☆267Updated 8 months ago
• vmcall / owned_alignment
  Hooking kernel functions by abusing alignment
  ☆240Updated 4 years ago
• ch4ncellor / EAC-Reversal
  09/2021 reversal of EasyAntiCheat driver
  ☆213Updated 3 years ago
• JustasMasiulis / ida_bitfields
  IDA Pro plugin to make bitfield accesses easier to grep
  ☆232Updated last month
• Oliver-1-1 / SmmInfect
  ☆163Updated this week
• tandasat / SimpleSvmHook
  SimpleSvmHook is a research purpose hypervisor for Windows on AMD processors.
  ☆375Updated 4 years ago
• thesecretclub / callout-poc
  ☆139Updated 4 years ago
• momo5502 / ept-hook-detection
  🪝 Different aproaches to detecting EPT hooks
  ☆102Updated 2 years ago
• can1357 / NtRays
  Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
  ☆586Updated 2 months ago
• can1357 / IdaThemer
  🎨 Seamlessly convert your favorite Visual Studio Code themes to IDA Pro themes.
  ☆98Updated 11 months ago
• Deputation / instrumentation_callbacks
  A proof of concept demonstrating instrumentation callbacks on Windows 10 21h1 with a TLS variable to ensure all syscalls are caught.
  ☆127Updated 3 years ago
• mrexodia / driver_unpacking
  Ghetto user mode emulation of Windows kernel drivers.
  ☆132Updated 5 months ago
• thesecretclub / SandboxBootkit
  Bootkit for Windows Sandbox to disable DSE/PatchGuard.
  ☆274Updated 5 months ago
• VoidSec / DriverBuddyReloaded
  Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks
  ☆345Updated 5 months ago
• not-matthias / Nemesis
  A customizable process dumper.
  ☆138Updated 5 years ago
• VollRagm / lpmapper
  A mapper that maps shellcode into loaded large page drivers
  ☆264Updated 2 years ago
• mike1k / pepp
  C++ library for parsing and manipulating PE files statically and dynamically.
  ☆86Updated last year
• memN0ps / illusion-rs
  Rusty Hypervisor - Windows UEFI Blue Pill Type-1 Hypervisor in Rust (Codename: Illusion)
  ☆253Updated 6 months ago
• adrianyy / kernelhook
  Windows inline hooking tool.
  ☆251Updated 6 years ago
• nelfo / Milfuscator
  x86 PE Mutator
  ☆216Updated 2 years ago
• BadPlayer555 / KernelGDIDraw
  The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.
  ☆284Updated 4 years ago
• can1357 / selene
  Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!
  ☆331Updated 5 months ago