Windows Kernel Security: Memory Integrity Verification with Disk Verification of ntoskrnl.exe
☆27Mar 23, 2025Updated last year
Alternatives and similar repositories for DetectNtoskrnlIntegrity
Users that are interested in DetectNtoskrnlIntegrity are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 基于Unicorn仿真PE模拟☆31Apr 22, 2022Updated 3 years ago
- kASLR bypass technique on Intel CPUs.☆32May 18, 2025Updated 10 months ago
- Here you can find some vulnerable Windows Kernel Drivers☆13Feb 21, 2025Updated last year
- anti cheat drv open source☆19Apr 18, 2024Updated last year
- Three different shellcode techniques on the Windows Kernel☆15Apr 8, 2025Updated 11 months ago
- Hook syscalls from ring0 without triggering PatchGuard☆24Oct 29, 2025Updated 4 months ago
- ☆15Mar 4, 2021Updated 5 years ago
- A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe☆75Aug 16, 2023Updated 2 years ago
- IDA Pro plugin AntiXorstr☆155Feb 24, 2025Updated last year
- NDC Oslo 2019 slides and demos☆33Nov 26, 2020Updated 5 years ago
- ☆17Dec 18, 2022Updated 3 years ago
- Automatically exported from code.google.com/p/windbgshark☆12Nov 3, 2015Updated 10 years ago
- Shows an example of how to implement VT-d/AMD-Vi on Windows☆171Sep 22, 2023Updated 2 years ago
- Windows x64 DLL/Driver manual map injection on a non-present PML4E using physical memory read/writes, direct page table manipulation and …☆86Sep 28, 2025Updated 5 months ago
- query-pdb is a server-side software for parsing PDB files. The software provides PDB online parsing service.☆167Oct 27, 2025Updated 4 months ago
- 对Windbg以Exdi模式下调试windows做一些修复☆21Aug 25, 2023Updated 2 years ago
- 从MmPfnData中枚举进程和页目录基址☆208Aug 18, 2023Updated 2 years ago
- Hook system calls, context switches, page faults and more.☆34Jul 25, 2019Updated 6 years ago
- WinDbg plugin to trace module transitions from a debugged driver.☆47Dec 22, 2025Updated 3 months ago
- ☆23Aug 27, 2025Updated 6 months ago
- 这篇文章的目的是介绍一款实验性项目基于COM命名管道或者Windows Hyper-V虚拟机Vmbus通道实现的运行在uefi上的windbg调试引擎开发心得☆43Jun 16, 2024Updated last year
- driver that communicates using a shared section☆96Mar 17, 2025Updated last year
- POC usermode <=> kernel communication via ALPC.☆72Jun 6, 2024Updated last year
- PoC of BOOST-ed _EPROCESS.VadRoot iterating☆27May 21, 2014Updated 11 years ago
- ☆16Oct 31, 2021Updated 4 years ago
- Windows kernel driver that detects hypervisors by probing SIDT/LIDT edge cases, paging/TLB behaviors, privilege transitions, and timing e…☆37Mar 3, 2026Updated 3 weeks ago
- 无痕hook探测☆45Aug 6, 2025Updated 7 months ago
- A intel hypervisor, implementing many virtualization techniques☆53Apr 24, 2023Updated 2 years ago
- DRM Library for Windows (x64) in C++☆29Oct 15, 2025Updated 5 months ago
- Leveraging TPM2 TCG Logs (Measured Boot) to Detect UEFI Drivers and Pre-Boot Applications☆22Mar 28, 2025Updated 11 months ago
- ☆68Sep 16, 2022Updated 3 years ago
- Windows HID Virtual Driver Kit SDK☆33Dec 5, 2022Updated 3 years ago
- Windows hypervisor for Intel x64: defensive host hypervisor for Windows designed to mitigate kernel-level attacks including BYOVD, compat…☆256Mar 15, 2026Updated last week
- An UWP Client for e-hentai.org☆10May 22, 2018Updated 7 years ago
- ☆34Apr 11, 2023Updated 2 years ago
- Simple single file header for creating zero imports drivers. Can be useful for bypassing forensic memory analysis performed by anticheats…☆19Jun 10, 2025Updated 9 months ago
- Very easy to use pdb parsing library with only one header file,You can use it even if you are a fool.☆10Feb 12, 2026Updated last month
- first commit☆64Oct 29, 2020Updated 5 years ago
- ☆105Feb 6, 2026Updated last month