Alternatives and similar repositories for LeechCore-plugins:

Users that are interested in LeechCore-plugins are comparing it to the libraries listed below

• hfiref0x / AsIo3Unlock
  ASUSTeK AsIO3 I/O driver unlock
  ☆20Updated 3 years ago
• skadro-official / kdmapper
  driver manual mapper
  ☆12Updated 4 years ago
• ajkhoury / RemoteCode-Kernel
  Simple code generation library developed in C intended for code generation in Kernel mode
  ☆17Updated 2 years ago
• samshine / ScyllaHideDetector2
  Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.
  ☆24Updated 5 years ago
• calware / HV-Playground
  A simple and heavily documented series of test hypervisors built for 64-bit Windows 10 systems running under Intel's VT-x
  ☆29Updated 4 years ago
• XShar / Super_Hide_String
  Скрытие строки от отладчиков и декомпиляторов
  ☆50Updated 5 years ago
• niemand-sec / Reversing-XignCode3-Driver
  I'm going to be dropping code from the XC3 Driver (result of reversing the driver)
  ☆67Updated 5 years ago
• Rat431 / ColdHide
  (DEPRECATED) A simple anti-anti debug library for Windows
  ☆29Updated 4 years ago
• Midi12 / QueryWorkingSetExample
  Just an example of a well-known technique to detect memory tampering via Windows Working Sets.
  ☆16Updated 3 years ago
• Cr4sh / PTBypass-PoC
  Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.
  ☆75Updated 14 years ago
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆62Updated last year
• crvvdev / intraceptor
  Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.
  ☆28Updated 2 years ago
• h311d1n3r / LetsHook
  A Windows API hooking library !
  ☆31Updated 2 years ago
• kkent030315 / EvilHooker
  Function hooks in Windows NT Kernel
  ☆22Updated 4 years ago
• nbqofficial / CTHD
  Process hiding library
  ☆19Updated 4 years ago
• Alex3434 / Binja-SigMaker
  SigMaker plugin for Binary Ninja
  ☆9Updated 4 years ago
• mgeeky / HEVD_Kernel_Exploit
  Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.
  ☆65Updated 3 years ago
• POPFD / cascade
  A thin introspection hypervisor framework that allows for low level resource manipulation.
  ☆13Updated last year
• ergrelet / triton-bn
  Binary Ninja plugin that can be used to apply Triton's dead store eliminitation pass on basic blocks or functions.
  ☆58Updated 6 months ago
• ajkhoury / pdbfetch
  Fetch PDB symbols directly from Microsoft's symbol servers
  ☆42Updated 3 years ago
• alfarom256 / drivers_and_shit
  ☆58Updated 2 years ago
• adrianyy / x64-syscall
  x64 syscall caller in C++.
  ☆86Updated 6 years ago
• ajkhoury / Errata1337
  ☆67Updated 4 years ago
• POPFD / HypervisorBase
  A library for intel VT-x hypervisor functionality supporting EPT shadowing.
  ☆48Updated 3 years ago
• Gbps / CapcomLib
  A reflexive driver loader to bypass Windows DSE (featuring a custom PE loader)
  ☆39Updated 6 years ago
• weak1337 / ricochet_deobfuscator
  ☆49Updated 3 years ago
• mrexodia / REToolSync
  Collaboration platform for reverse engineering tools.
  ☆39Updated last month
• depletionmode / VirtualAllocSecure
  ☆21Updated 5 years ago
• backengineering / Voyager
  A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)
  ☆46Updated last year
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year