tyranid/windows-memory-access-traps external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

tyranid/windows-memory-access-traps

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/tyranid/windows-memory-access-traps)

Close

tyranid / windows-memory-access-trapsView on GitHubMore

• External links
• Readme badge

A few examples of how to trap virtual memory access on Windows.

☆41Dec 18, 2024Updated last year

Alternatives and similar repositories for windows-memory-access-traps

Users that are interested in windows-memory-access-traps are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• 0xflux / Scil

  View on GitHub
  System Call Integrity Layer - experimental security research
  ☆26Apr 14, 2026Updated 3 weeks ago
• 0xTriboulet / Abomination

  View on GitHub
  A synergized Visual Studio and Rust development environment
  ☆19Jan 25, 2025Updated last year
• wolfcod / lsassdump

  View on GitHub
  lsassdump via RtlCreateProcessReflection and NanoDump
  ☆87Oct 18, 2024Updated last year
• mrexodia / zeromcp

  View on GitHub
  Zero-dependency MCP server implementation.
  ☆75Mar 27, 2026Updated last month
• chompie1337 / Talks

  View on GitHub
  My public talks
  ☆14Oct 1, 2024Updated last year
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• joaoviictorti / dinvk

  View on GitHub
  Dynamically invoke arbitrary code in Rust
  ☆105Mar 16, 2026Updated last month
• JanielDary / ImmoralFiber

  View on GitHub
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆284Sep 18, 2024Updated last year
• allthingsida / libidacpp

  View on GitHub
  idax: IDASDK extension libraries
  ☆24Oct 12, 2025Updated 6 months ago
• 0xTriboulet / T-1

  View on GitHub
  T-1 is a shellcode loader that leverages ML techniques to detect VM environments
  ☆37Oct 30, 2024Updated last year
• zodiacon / TraceConnections

  View on GitHub
  Simple example for getting started with eBPF for Windows
  ☆51Feb 23, 2025Updated last year
• rasta-mouse / PacketAlchemy

  View on GitHub
  Playing with packets in C#
  ☆15Aug 16, 2024Updated last year
• rtecCyberSec / BitlockMove

  View on GitHub
  Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking
  ☆440Jun 27, 2025Updated 10 months ago
• floesen / KExecDD

  View on GitHub
  Admin to Kernel code execution using the KSecDD driver
  ☆265Apr 19, 2024Updated 2 years ago
• jbgalet / yaradec

  View on GitHub
  Simple yara decompiler
  ☆17Apr 8, 2017Updated 9 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• gabriellandau / ItsNotASecurityBoundary

  View on GitHub
  ☆198Jul 29, 2024Updated last year
• rbmm / Noname

  View on GitHub
  really ?
  ☆12Feb 29, 2024Updated 2 years ago
• GCHE1 / StrCrypt

  View on GitHub
  Compile-time string crypter library for C++
  ☆13May 7, 2021Updated 4 years ago
• DeDf / ParseNTFS

  View on GitHub
  ☆20Nov 8, 2020Updated 5 years ago
• MzHmO / SymProcAddress

  View on GitHub
  Zero EAT touch way to retrieve function addresses (GetProcAddress on steroids)
  ☆145Mar 16, 2024Updated 2 years ago
• naksyn / Embedder

  View on GitHub
  Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies
  ☆123May 29, 2024Updated last year
• lap1nou / CLR_Heap_encryption

  View on GitHub
  ☆102Oct 7, 2023Updated 2 years ago
• SafeBreach-Labs / Win-DoS

  View on GitHub
  A set of tools and exploits to cause DoS for remote Windows Server & Windows 11 machines
  ☆32Feb 9, 2026Updated 2 months ago
• ioncodes / SilentLoad

  View on GitHub
  "Service-less" driver loading
  ☆186Nov 28, 2024Updated last year
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• Iansus / SilentLsassDump

  View on GitHub
  VisualStudio port of https://github.com/guervild/BOFs/tree/dev/SilentLsassDump
  ☆22Jul 6, 2023Updated 2 years ago
• jborean93 / AmsiProvider

  View on GitHub
  Test AMSI Provider implementation in C#
  ☆45Dec 18, 2024Updated last year
• draktuls / IAF-EAF-Shellcode-bypass-PoC

  View on GitHub
  Shellcode capable of bypassing EAF / IAF mitigations
  ☆28Apr 11, 2023Updated 3 years ago
• affix / rusty-hollow

  View on GitHub
  Unix Process hollowing in rust
  ☆22Dec 16, 2024Updated last year
• mannyfred / MentalTi

  View on GitHub
  Mentally ill EtwTi parser
  ☆70Jan 11, 2026Updated 3 months ago
• xrombar / flower

  View on GitHub
  a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor
  ☆111Mar 25, 2024Updated 2 years ago
• Peribunt / VPGATHER

  View on GitHub
  Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in …
  ☆55Dec 30, 2025Updated 4 months ago
• Teach2Breach / rpeloader

  View on GitHub
  use python on windows with full submodule support without installation
  ☆30Jan 23, 2025Updated last year
• Archie-osu / PowerHook

  View on GitHub
  Hooking KPRCB IdlePreselect function to gain execution inside PID 0.
  ☆74Apr 13, 2025Updated last year
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• VDOO-Connected-Trust / KotlinScriptProvider

  View on GitHub
  A Ghidra extension for running Kotlin scripts
  ☆16May 21, 2020Updated 5 years ago
• PorLaCola25 / ProcessDoppelganging

  View on GitHub
  Process doppelganging POC using direct system calls, PPID spoofing and dropbox as an external delivery channel for the payload.
  ☆17Jan 7, 2021Updated 5 years ago
• eversinc33 / drvtrace

  View on GitHub
  WinDbg plugin to trace module transitions from a debugged driver.
  ☆52Dec 22, 2025Updated 4 months ago
• NtDallas / KrakenMask

  View on GitHub
  Sleep obfuscation
  ☆274Dec 13, 2024Updated last year
• 0xHossam / KernelCallbackTable-Injection-PoC

  View on GitHub
  Proof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijac…
  ☆274Oct 31, 2024Updated last year
• jedisct1 / zig-aes-gem

  View on GitHub
  AES-GEM (AES Galois Extended Mode) implementation.
  ☆13Feb 9, 2026Updated 2 months ago
• Slowerzs / CryptDecryptMemory

  View on GitHub
  ☆32Dec 5, 2024Updated last year