Alternatives and similar repositories for recon2024_demo

Users that are interested in recon2024_demo are comparing it to the libraries listed below

• brew02 / BudgetEPT
  Create stealthy, inline, EPT-like hooks using SMAP and SMEP
  ☆37Updated 7 months ago
• POPFD / HypervisorBase
  A library for intel VT-x hypervisor functionality supporting EPT shadowing.
  ☆50Updated 4 years ago
• Azvanzed / efi-runner
  A efi-runner and message logger for vmware.
  ☆12Updated last month
• DenuvoSoftwareSolutions / DVRT
  How Meltdown and Spectre haunt Anti-Cheat: DVRT details
  ☆21Updated 9 months ago
• backengineering / bintests
  A large collection of 32bit and 64bit PE files useful for verifying the correctness of bin2bin transformations
  ☆54Updated 10 months ago
• xu-Wan / HypercallPageHook
  POC Hook of nt!HvcallCodeVa
  ☆52Updated 2 years ago
• archercreat / hypereye
  My research WIP bluepill hypervisor
  ☆41Updated 2 years ago
• BeneficialCode / KReClassEx
  Kernel ReClassEx
  ☆62Updated last year
• backengineering / vmhook
  A demonstration of hooking into the VMProtect-2 virtual machine
  ☆19Updated last year
• helloobaby / Nmi-Callback
  detect hypervisor with Nmi Callback
  ☆34Updated 2 years ago
• kyle-elliott / DVM
  Symbolic Execution based on lifting amd64 to z3
  ☆27Updated 11 months ago
• ZehMatt / zyemu
  x86-64 user mode emulation using Zydis
  ☆46Updated 4 months ago
• archercreat / vdk
  vdk is a set of utilities used to help with exploitation of a vulnerable driver.
  ☆40Updated 3 years ago
• gmh5225 / FakeEnclave
  A poc that abuses Enclave
  ☆38Updated 2 years ago
• mzakocs / CVE-2021-21551-POC
  An extended proof-of-concept for the CVE-2021-21551 Dell ‘dbutil_2_3.sys’ Kernel Exploit
  ☆24Updated 3 years ago
• Oliver-1-1 / EtwKeyboardDetection
  ☆30Updated 8 months ago
• backengineering / msrexec
  Elevate arbitrary MSR writes to kernel execution.
  ☆36Updated last year
• ColeStrickler / 1337Visor
  Type 2 Hypervisor for security research supported by AMD-V hardware assisted virtualization
  ☆38Updated 2 years ago
• ch3rn0byl / CVE-2021-21551
  ☆26Updated 4 years ago
• pinwhell / MSPDBX
  Lightweight PDB symbol parser and resolver
  ☆24Updated 7 months ago
• iqrw0 / DieDMAProtection
  ☆22Updated last year
• ioncodes / rapid-kdbg-hyperv
  ☆15Updated 2 years ago
• greyb1t / GreyM
  Me fockin' pe protector
  ☆45Updated 2 years ago
• 1401199262 / HookSwapContext
  ☆30Updated 2 years ago
• 1hAck-0 / zeroimport
  ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel drive…
  ☆47Updated 2 years ago
• irql / nokd
  reverse engineering of the windows nt kernel debugger protocol & reimplementation.
  ☆25Updated 11 months ago
• stdhu / windows-kernel-pagehook
  windows kernel pagehook
  ☆39Updated 2 years ago
• emlinhax / tableflipper
  partially disable patchguard up to win11 21H2
  ☆18Updated 11 months ago
• asamy / NastyAlignment
  Simple anti-instrumentation with EFLAGS.AC
  ☆18Updated 2 months ago
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆65Updated last year