Alternatives and similar repositories for awesome-anti-virtualization

Users that are interested in awesome-anti-virtualization are comparing it to the libraries listed below

• dmaivel / ntoseye
  Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
  ☆114Updated 3 weeks ago
• ergrelet / themida-spotter-bn
  A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.
  ☆89Updated last year
• Idov31 / NovaHypervisor
  NovaHypervisor is a defensive x64 Intel host based hypervisor. The goal of this project is to protect against kernel based attacks (eithe…
  ☆236Updated 3 months ago
• vmsplit / checkm8
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆83Updated 9 months ago
• badhive / stitch
  Rewrite and obfuscate code in compiled binaries
  ☆273Updated 3 weeks ago
• android1337 / brkida
  C++ macro for x64 programs that breaks ida hex-rays decompiler tool.
  ☆136Updated last year
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆164Updated 3 years ago
• 0x1c1101 / blazing_asm
  Simple, fast and lightweight Header-Only C++ Assembler Library
  ☆128Updated 4 months ago
• m417z / x64dbg-symbol-tldr
  An x64dbg plugin which helps make sense of long C++ symbols
  ☆57Updated 2 years ago
• ssnob / hidden_syscall_monitoring
  monitors hidden syscalls called from call of duty anticheat
  ☆88Updated 11 months ago
• Vector35 / scc
  ☆156Updated last week
• namazso / dll-universal-patcher
  A universal binary patching dll.
  ☆114Updated last year
• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆160Updated last year
• Fatmike-GH / DLLInjectionDetector
  A DLL Injection Detector for Windows.
  ☆76Updated 2 months ago
• NeoMaster831 / kurasagi
  Windows 11 24H2-25H2 Runtime PatchGuard Bypass
  ☆236Updated 2 months ago
• carlos-al / user-kernel-syscall-hook
  ☆93Updated last year
• KiFilterFiberContext / windows-software-policy
  Research on obfuscated licensing APIs / CLIP service in the Windows kernel
  ☆127Updated 3 years ago
• thalium / vminer
  ☆89Updated 10 months ago
• connormcgarr / Vtl1Mon
  Virtual Trust Level (VTL 1) secure call tracing
  ☆84Updated 4 months ago
• tandasat / hvext
  The Windbg extensions to study Hyper-V on Intel and AMD processors.
  ☆168Updated 4 months ago
• therealdreg / masm32-kernel-programming
  masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)
  ☆127Updated 2 years ago
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆95Updated last year
• djolertrk / kovid-obfuscation-passes
  A set of LLVM and GCC based plugins that perform code obfuscation.
  ☆136Updated 2 months ago
• Fyyre / DrvMon
  Advanced driver monitoring utility.
  ☆217Updated 3 years ago
• x64dbg / DataExplorer
  The DataExplorer plugin integrates the pattern language from ImHex into x64dbg.
  ☆91Updated 11 months ago
• vmsplit / IceVMM
  minimal hypervisor for aarch64 (WIP)
  ☆29Updated last month
• vmi-rs / vmi
  Modular and extensible library for Virtual Machine Introspection
  ☆113Updated 4 months ago
• Internet-2-0 / Malcore-x64dbg
  This x64dbg plugin allows you to upload your sample to Malcore and view the results.
  ☆36Updated 2 years ago
• build-cpp / wdk_template
  Windows kernel driver template for cmkr (with testsigning).
  ☆36Updated 2 years ago
• Fatmike-GH / Fatpack
  A Windows PE packer for executables (x64) with LZMA compression and with full TLS (Thread Local Storage) support.
  ☆91Updated 2 months ago