Alternatives and similar repositories for LeechCore-plugins

Users that are interested in LeechCore-plugins are comparing it to the libraries listed below

• XShar / Super_Hide_String
  Скрытие строки от отладчиков и декомпиляторов
  ☆50Updated 5 years ago
• Gbps / CapcomLib
  A reflexive driver loader to bypass Windows DSE (featuring a custom PE loader)
  ☆41Updated 6 years ago
• Rat431 / ColdHide
  (DEPRECATED) A simple anti-anti debug library for Windows
  ☆29Updated 4 years ago
• samshine / ScyllaHideDetector2
  Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.
  ☆25Updated 5 years ago
• backengineering / Voyager
  A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)
  ☆60Updated last year
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆64Updated last year
• hfiref0x / AsIo3Unlock
  ASUSTeK AsIO3 I/O driver unlock
  ☆21Updated 4 years ago
• gmh5225 / FakeEnclave
  A poc that abuses Enclave
  ☆38Updated 2 years ago
• archercreat / vdk
  vdk is a set of utilities used to help with exploitation of a vulnerable driver.
  ☆40Updated 2 years ago
• alfarom256 / drivers_and_shit
  ☆59Updated 2 years ago
• tandasat / recon2024_demo
  Provides commands to read from and write to arbitrary kernel-mode memory for users with the Administrator privilege. HVCI compatible. No …
  ☆16Updated 11 months ago
• kkent030315 / EvilHooker
  Function hooks in Windows NT Kernel
  ☆23Updated 4 years ago
• Deputation / hygieia
  Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.
  ☆143Updated 3 years ago
• x0reaxeax / rwlazer64
  Win64 UEFI Driver-based tool for unrestricted memory R/W
  ☆26Updated 3 years ago
• POPFD / HypervisorBase
  A library for intel VT-x hypervisor functionality supporting EPT shadowing.
  ☆49Updated 4 years ago
• skadro-official / PE-Dump-Fixer
  PE-Dump-Fixer
  ☆105Updated 5 years ago
• s0ngidong3 / TPM-SPOOFER
  ☆26Updated last year
• crvvdev / intraceptor
  Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.
  ☆29Updated 2 years ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year
• helloobaby / Nmi-Callback
  detect hypervisor with Nmi Callback
  ☆34Updated 2 years ago
• cutecatsandvirtualmachines / Sputnik
  The sequel to Voyager
  ☆48Updated 8 months ago
• calware / HV-Playground
  A simple and heavily documented series of test hypervisors built for 64-bit Windows 10 systems running under Intel's VT-x
  ☆32Updated 4 years ago
• ajkhoury / Errata1337
  ☆68Updated 4 years ago
• adrianyy / x64-syscall
  x64 syscall caller in C++.
  ☆90Updated 6 years ago
• emlinhax / DbgViewEx
  combine the power of procmon and dbgview into one single application
  ☆8Updated last year
• ajkhoury / pubg_internal
  ☆30Updated 3 years ago
• ajkhoury / RemoteCode-Kernel
  Simple code generation library developed in C intended for code generation in Kernel mode
  ☆16Updated 2 years ago
• rbapat / KernelInjector
  Stealthy Injector that leverages a vulnerable driver and other exploits to remain undetected
  ☆36Updated 6 years ago
• synctop / tpm-mmio
  Using MMIO (Memory-Mapped I/O) to read TPM 2.0 public Endorsement Key.
  ☆40Updated 11 months ago
• 0xUINTBEEF / krn-rw-ioctl
  simple driver to read and write
  ☆18Updated last month