Alternatives and similar repositories for LeechCore-plugins:

Users that are interested in LeechCore-plugins are comparing it to the libraries listed below

• XShar / Super_Hide_String
  Скрытие строки от отладчиков и декомпиляторов
  ☆50Updated 5 years ago
• samshine / ScyllaHideDetector2
  Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.
  ☆25Updated 5 years ago
• helloobaby / Nmi-Callback
  detect hypervisor with Nmi Callback
  ☆34Updated 2 years ago
• skadro-official / kdmapper
  driver manual mapper
  ☆12Updated 5 years ago
• backengineering / Voyager
  A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)
  ☆55Updated last year
• Gbps / CapcomLib
  A reflexive driver loader to bypass Windows DSE (featuring a custom PE loader)
  ☆42Updated 6 years ago
• weak1337 / ricochet_deobfuscator
  ☆51Updated 3 years ago
• xtremegamer1 / Illicit-memory-allocation
  This driver hooks a device object for ioctl and uses mdls to allocate physical pages and manually injects an entry into a process's page …
  ☆14Updated 2 years ago
• crvvdev / intraceptor
  Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.
  ☆29Updated 2 years ago
• gmh5225 / FakeEnclave
  A poc that abuses Enclave
  ☆37Updated 2 years ago
• cutecatsandvirtualmachines / Sputnik
  The sequel to Voyager
  ☆43Updated 7 months ago
• hfiref0x / AsIo3Unlock
  ASUSTeK AsIO3 I/O driver unlock
  ☆21Updated 3 years ago
• ajkhoury / Errata1337
  ☆68Updated 4 years ago
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆63Updated last year
• Xyrem / Arbitrary-Physical-Memory-RW
  ☆39Updated 2 years ago
• ajkhoury / RemoteCode-Kernel
  Simple code generation library developed in C intended for code generation in Kernel mode
  ☆16Updated 2 years ago
• POPFD / HypervisorBase
  A library for intel VT-x hypervisor functionality supporting EPT shadowing.
  ☆49Updated 4 years ago
• h311d1n3r / LetsHook
  A Windows API hooking library !
  ☆31Updated 2 years ago
• Cr4sh / PTBypass-PoC
  Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.
  ☆75Updated 14 years ago
• mibho / x64dbg-vmp-trace
  unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…
  ☆57Updated last year
• POPFD / cascade
  A thin introspection hypervisor framework that allows for low level resource manipulation.
  ☆13Updated last year
• x0reaxeax / rwlazer64
  Win64 UEFI Driver-based tool for unrestricted memory R/W
  ☆28Updated 3 years ago
• decimaldreamer / krn-rw-ioctl
  simple driver to read and write
  ☆18Updated 4 years ago
• mrexodia / REToolSync
  Collaboration platform for reverse engineering tools.
  ☆39Updated 3 months ago
• keowu / birosca
  A Dynamic Study Vmprotect 1.x-1.9X Unpacking Toolkit, Recovery OEP, FIX PE, IAT and bypass protection with custom Loader and interceptor …
  ☆31Updated last year
• s0ngidong3 / TPM-SPOOFER
  ☆26Updated last year
• ioncodes / rapid-kdbg-hyperv
  ☆15Updated 2 years ago
• ekknod / efi-monitor
  just proof of concept. hooking MmCopyMemory PG safe.
  ☆68Updated last year
• Ahora57 / Unabomber
  Improved VMP Idea(detect anti-anti-debug tools by bug)
  ☆42Updated last year
• ergrelet / triton-bn
  Binary Ninja plugin that can be used to apply Triton's dead store eliminitation pass on basic blocks or functions.
  ☆58Updated 8 months ago