sekoyo / detourxs

Related projects ⓘ

Alternatives and complementary repositories for detourxs

• Synestraa / Highcall-Library
  usermode standalone kernel interface
  ☆110Updated 6 years ago
• vmcall / eye_mapper
  BattlEye x64 usermode injector
  ☆62Updated 5 years ago
• tanduRE / AvastHV
  Hooking SSDT with Avast Internet Security Hypervisor
  ☆110Updated 5 years ago
• can1357 / safe_capcom
  Capcom wrapper with safety in mind.
  ☆79Updated 6 years ago
• stevemk14ebr / CompileTime-String-Encryption
  C++ 17 compile time string encryption supporting vs2010-2019
  ☆73Updated 4 years ago
• d366 / DarkMMap
  Manual PE image mapper
  ☆61Updated 11 years ago
• tomLadder / WinLib
  Windows Manipulation Library (x64, User/Kernelmode)
  ☆74Updated 6 years ago
• SamLarenN / CPUZ-DSEFix
  Exploiting CPU-Z Driver To Turn Load Unsigned Drivers
  ☆125Updated 7 years ago
• arielkoren / DisablePatchGuard
  disable most common windowsx64 systems patchguard
  ☆83Updated 5 years ago
• tandasat / FU_Hypervisor
  A hypervisor hiding user-mode memory using EPT
  ☆105Updated 6 years ago
• vol4ok / libsplice
  Library for kernel and user mode splicing for Windows (x86 and x64).
  ☆62Updated 12 years ago
• adrianyy / x64-syscall
  x64 syscall caller in C++.
  ☆84Updated 6 years ago
• tandasat / GuardMon
  Hypervisor based tool for monitoring system register accesses.
  ☆141Updated 6 years ago
• MeeSong / KTL
  Windows Kernel Template Library
  ☆108Updated 2 years ago
• nihilus / IDA_FunctionStringAssociate_PlugIn
  IDA FunctionStringAssociate PlugIn
  ☆29Updated 9 years ago
• HoShiMin / EnjoyTheRing0
  Шаблон полнофункционального драйвера и обёртки над ядерным API
  ☆110Updated 8 years ago
• can1357 / physical_mem_controller
  A library to read physical memory and system-wide virtual memory.
  ☆122Updated 6 years ago
• tandasat / MemoryMon
  Detecting execution of kernel memory where is not backed by any image file
  ☆252Updated 6 years ago
• SamLarenN / CallbackDisabler
  Disable Driver Callbacks
  ☆98Updated 7 years ago
• btbd / wpp
  Intercepting DeviceControl via WPP
  ☆127Updated 5 years ago
• wbenny / avmext
  Anti-Anti-VM solution via Windows Driver
  ☆54Updated 6 years ago
• Nukem9 / VirtualDbgHide
  Windows kernel mode driver to prevent detection of debuggers.
  ☆95Updated 9 years ago
• markhc / windbg_to_c
  Translates WinDbg "dt" structure dump to a C structure
  ☆126Updated 8 years ago
• Cr4sh / PTBypass-PoC
  Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.
  ☆73Updated 13 years ago
• MeeSong / Sunstrider
  Analyze PatchGuard
  ☆53Updated 6 years ago
• IgorKorkin / HypervisorsDetection
  This is the first software system, which can detect a stealthy hypervisor and calculate several nested ones even under countermeasures.
  ☆83Updated 9 years ago
• namazso / r0akmap
  r0akmap is a PoC driver manual mapper based on r0ak
  ☆39Updated 6 years ago
• coltonon / RegHookEx
  External mid-function hooking method to retrieve register data
  ☆84Updated 6 years ago