Alternatives and similar repositories for Kiroshi

Users that are interested in Kiroshi are comparing it to the libraries listed below

• noahware / darken-anticheat
  Kernel anti-cheat for protecting software.
  ☆109Updated 3 months ago
• SamuelTulach / unxorer
  Yet another IDA Pro/Home plugin for deobfuscating stack strings
  ☆117Updated 3 weeks ago
• SamuelTulach / MemoryGuard
  Experiment with PAGE_GUARD protection to hide memory from other processes
  ☆54Updated last year
• DErDYAST1R / NmiCallbackBlocker
  Kernel Level NMI Callback Blocker
  ☆154Updated 4 months ago
• LabGuy94 / Diskjacker
  Hijacking Hyper-V at Runtime with DDMA
  ☆76Updated 5 months ago
• sigwl / AiDA
  An AI-powered assistant for IDA 9.0+ to accelerate reverse engineering of C++ games.
  ☆222Updated last month
• BeneficialCode / KReClassEx
  Kernel ReClassEx
  ☆66Updated 2 years ago
• android1337 / brkida
  C++ macro for x64 programs that breaks ida hex-rays decompiler tool.
  ☆137Updated last year
• DErDYAST1R / EfiGuardUsermodeLoader
  This is an EfiGuard BootLoader that can boot EfiGuard from Usermode with no USB or Setup as a Single Executable with automatic File Dumpi…
  ☆68Updated 4 months ago
• SamuelTulach / HookGuard
  Hooking Windows' exception dispatcher to protect process's PML4
  ☆223Updated last year
• NeoMaster831 / kurasagi
  Windows 11 24H2-25H2 Runtime PatchGuard Bypass
  ☆239Updated 2 months ago
• LabGuy94 / CopyMyWrite
  Abusing DDMA alongside Copy On Write for Cross Process Code Execution for a 3000$ Bug Bounty
  ☆82Updated 3 weeks ago
• gmh5225 / ida-find-.data-ptr
  A simple ida python script to find .data ptr
  ☆56Updated 2 years ago
• sodareverse / TDE
  A devirtualization engine for Themida.
  ☆105Updated last year
• Ahora57 / Unabomber
  Improved VMP Idea(detect anti-anti-debug tools by bug)
  ☆47Updated 2 years ago
• 0mWindyBug / KernelInjector
  PoC kernel to usermode injection
  ☆103Updated last year
• 0mWindyBug / DataptrHooks
  ntoskrnl .data hooks for UM-KM communication
  ☆53Updated last year
• isiddique2024 / Page-Table-Injector
  Windows x64 DLL/Driver manual map injection on a non-present PML4E using physical memory read/writes, direct page table manipulation and …
  ☆81Updated 4 months ago
• SamuelTulach / ida-unity-pdb-downloader
  Simple IDA Pro plugin to download Unity debug symbols from their symbol server
  ☆82Updated last year
• yubie-re / ida-jm-xorstr-decrypt-plugin
  Attempts to decrypt JM Xorstr in some x64 binaries
  ☆59Updated 2 years ago
• jonomango / chum
  Binary rewriter for 64-bit PE files.
  ☆99Updated last year
• Oliver-1-1 / ModuleSpoof
  ☆83Updated last year
• DErDYAST1R / SilentFunctionCaller
  Allows for same-file KernelMode function execution using Encrypted addresses of Functions
  ☆48Updated 4 months ago
• 4l3x777 / dse_pg_bypass
  DSE & PG bypass via BYOVD attack
  ☆77Updated 6 months ago
• donnaskiez / nmi
  nmi stackwalking + module verification
  ☆155Updated 2 years ago
• crowbar-team / vmp-import-resolver
  VMProtect 3.5+ dynamic import resolver
  ☆19Updated last year
• synctop / tpm-mmio
  Using MMIO (Memory-Mapped I/O) to read TPM 2.0 public Endorsement Key.
  ☆52Updated last year
• Oliver-1-1 / EtwKeyboardDetection
  ☆37Updated last year
• jonomango / nohv
  Kernel driver for detecting Intel VT-x hypervisors.
  ☆192Updated 2 years ago
• za233 / NeacController
  Exploit vulnerabilities in NeacSafe64.sys to achieve privilege escalation and kernel-mode shellcode execution
  ☆65Updated 6 months ago