Alternatives and similar repositories for libcapcom

Users that are interested in libcapcom are comparing it to the libraries listed below

• btbd / wpp
  Intercepting DeviceControl via WPP
  ☆134Updated 5 years ago
• vmcall / owned_alignment
  Hooking kernel functions by abusing alignment
  ☆243Updated 4 years ago
• vmcall / battleye_emulation
  BattlEye BEClient<->BEService usermode emulator
  ☆83Updated 5 years ago
• notscimmy / pplib
  Elevate a process to be a protected process
  ☆151Updated 5 years ago
• lennyRBLX / readwrite-kernel-stable
  a more stable & secure read/write virtual memory for kernel mode drivers
  ☆164Updated 5 years ago
• notscimmy / libelevate
  Handle elevation DKOM against ObRegisterCallbacks
  ☆308Updated 6 years ago
• SamLarenN / CallbackDisabler
  Disable Driver Callbacks
  ☆105Updated 7 years ago
• not-wlan / driver-hijack
  ☆153Updated 5 years ago
• can1357 / physical_mem_controller
  A library to read physical memory and system-wide virtual memory.
  ☆126Updated 7 years ago
• hoangprod / LeoSpecial-VEH-Hook
  Vectored Exception Handling Hooking Class
  ☆160Updated 6 years ago
• SamLarenN / SpeedFan-Exploit
  Abusing SpeedFan driver ability of physical memory manipulation
  ☆112Updated 7 years ago
• KDIo3 / PCIBan
  A PoC for requesting HWIDs directly from hardware, skipping any potential hooks or OS support.
  ☆80Updated 4 years ago
• ioncodes / vacation3-emu
  VAC3 (Valve Anti-Cheat 3) module emulator
  ☆100Updated 4 years ago
• not-matthias / Nemesis
  A customizable process dumper.
  ☆143Updated 6 years ago
• mrexodia / driver_unpacking
  Ghetto user mode emulation of Windows kernel drivers.
  ☆142Updated 8 months ago
• mq1n / DLLThreadInjectionDetector
  ☆169Updated 7 years ago
• can1357 / safe_capcom
  Capcom wrapper with safety in mind.
  ☆82Updated 7 years ago
• vmcall / MapDetection
  Detect manualmapped images remotely, without hassle
  ☆154Updated 7 years ago
• tanduRE / AvastHV
  Hooking SSDT with Avast Internet Security Hypervisor
  ☆118Updated 6 years ago
• Speedi13 / ManualMapped_SEH_32bit
  Enable SEH support for manual mapped x86-32bit PEs
  ☆67Updated 6 years ago
• thesecretclub / callout-poc
  ☆148Updated 4 years ago
• rogerxiii / kernel-codecave-poc
  Proof of concept on how to bypass some limitations of a manual mapped driver
  ☆172Updated 4 years ago
• armasm / EasyAntiPatchGuard
  Easy Anti PatchGuard
  ☆222Updated 4 years ago
• Rat431 / ColdHide_V2
  A mini anti-anti debug hooking library for Windows.
  ☆108Updated 4 years ago
• mike1k / pepp
  C++ library for parsing and manipulating PE files statically and dynamically.
  ☆88Updated last year
• Deputation / instrumentation_callbacks
  A proof of concept demonstrating instrumentation callbacks on Windows 10 21h1 with a TLS variable to ensure all syscalls are caught.
  ☆137Updated 3 years ago
• vmcall / eye_mapper
  BattlEye x64 usermode injector
  ☆65Updated 6 years ago
• changeofpace / Force-Page-Protection
  This x64dbg plugin sets the page protection for memory mapped views in scenarios which cause NtProtectVirtualMemory to fail.
  ☆117Updated 8 years ago
• Synestraa / Highcall-Library
  usermode standalone kernel interface
  ☆111Updated 7 years ago
• btbd / ddma
  Disks for DMA
  ☆104Updated 4 years ago