Alternatives and similar repositories for CTHD:

Users that are interested in CTHD are comparing it to the libraries listed below

• zer0condition / CritBSOD
  Abusing RtlAdjustPrivilege and NtSetInformationProcess to cause a BSOD from usermode
  ☆17Updated 2 years ago
• UCFoxi / NotifyRoutineHijackThread
  Hijack NotifyRoutine for a kernelmode thread
  ☆41Updated 2 years ago
• rbapat / KernelInjector
  Stealthy Injector that leverages a vulnerable driver and other exploits to remain undetected
  ☆36Updated 6 years ago
• Midi12 / drv-loader
  Simple driver loader for windows
  ☆18Updated 4 years ago
• XShar / Super_Hide_String
  Скрытие строки от отладчиков и декомпиляторов
  ☆50Updated 5 years ago
• kkent030315 / kernel_callbacks
  Bypasses for Windows kernel callbacks PatchGuard protection
  ☆43Updated 3 years ago
• Lima-X / Win32.Nebula
  A packed & protected Module Loader and more, for 64-bit Windows
  ☆28Updated 3 years ago
• HyperSine / siren-hypervisor
  ☆37Updated last year
• nelfo / PGHooker
  PAGE_GUARD based hooking library
  ☆42Updated 2 years ago
• Sentient111 / StealingSignatures
  Stealing signatures from pe files
  ☆16Updated 2 years ago
• ekknod / SetWindowHookEx
  Using SetWindowHookEx for preinjected DLL's
  ☆57Updated 2 years ago
• Rycooop / Callback-Registration
  Register a callback from a Manually mapped kernel module
  ☆15Updated 3 years ago
• kkent030315 / anyelevate
  x64 Windows privilege elevation using anycall
  ☆21Updated 3 years ago
• opcode86 / SysCaller
  Single header library to simplify the usage of direct syscalls. x64/x86
  ☆11Updated last year
• serbx / KernelVtableFunctionHook
  ☆18Updated 2 years ago
• gmh5225 / FakeEnclave
  A poc that abuses Enclave
  ☆36Updated 2 years ago
• Deputation / syscall_extractor
  A C++ syscall ID extractor for Windows. Developed, debugged and tested on 20H2.
  ☆20Updated 3 years ago
• namazso / simplerw
  a dumb rpm/wpm example driver
  ☆14Updated 3 years ago
• Nuxar1 / ImportsHook
  Written in a couple hours, don't judge :)
  ☆14Updated last year
• nulledc0de / phantom_thread
  POC kernel driver with hidden system thread
  ☆13Updated 9 months ago
• KANKOSHEV / Detect-MouseClassServiceCallback
  mouseclassservicecallback detection via hook
  ☆50Updated 3 years ago
• NewWorldComingSoon / UnknownField
  UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.
  ☆44Updated 2 years ago
• 0mWindyBug / PnpNotifyResearch
  a driver to enumerate registered pnp callbacks for a particular interface class based on reversal of IoRegisterPlugPlayNotification
  ☆11Updated 11 months ago
• addrianyy / asmlib_x64
  x64 assembler library
  ☆31Updated 8 months ago
• oxiKKK / iat-dump
  A dumper for all the imports stored within a Windows PE (portable executable).
  ☆15Updated 2 years ago
• 1401199262 / DriverProtect
  ☆13Updated 3 years ago
• android1337 / crystr
  Compile-Time Strings and Numbers Encryption for C++20
  ☆41Updated last week
• andrew9382 / manual_mapping_dll_injector
  manual mapping injector
  ☆28Updated 2 years ago
• POPFD / HypervisorBase
  A library for intel VT-x hypervisor functionality supporting EPT shadowing.
  ☆48Updated 3 years ago