Alternatives and similar repositories for WHP-simple

Users that are interested in WHP-simple are comparing it to the libraries listed below

• kukrimate / grr
  AMD SVM hypervisor rootkit proof of concept
  ☆48Updated 2 years ago
• b-irb / sauron
  Simple Intel VT-x type-2 hypervisor for 64-bit Linux.
  ☆19Updated 5 years ago
• malware-unicorn / pteroioctl-hook
  A driver to implement IOCTL hooking
  ☆27Updated 3 years ago
• intel / unicorn-for-efi
  Unicorn Engine port for UEFI firmware
  ☆49Updated 10 months ago
• BehroozAbbassi / sdkffi
  A code parser for C-Style header files that lets you to parse function's prototypes and data types used in their parameters.
  ☆94Updated 3 years ago
• Colton1skees / WinTTD
  Reverse engineered API for Microsoft's Time Travel Debugger
  ☆36Updated last year
• 3intermute / hvICE
  hypervisor enforced patch protection for the linux kernel with xen + libvmi, libvmi KASLR offset spoofer
  ☆34Updated last year
• leandrofroes / bn_ifl
  IFL - Interactive Functions List (plugin for Binary Ninja)
  ☆25Updated last year
• Nadharm / CoVirt
  A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).
  ☆35Updated 3 months ago
• Air14 / SourceSync
  Set of plugins and library for dynamic pdb generation and synchronisation
  ☆38Updated last year
• repnz / windows-imports-searcher
  Support Windows OS Reversing by searching easily for references to functions across many DLLs
  ☆36Updated 4 years ago
• Toroto006 / windows-kernel-driver-pipeline
  This master thesis project continuously collects and analyses Microsoft Windows kernel drivers using static and dynamic methods to help s…
  ☆21Updated last year
• fvrmatteo / oracle-synthesis-meets-equality-saturation
  ☆25Updated 8 months ago
• Rantanen / ghidra-minidump-loader
  Windows Minidump loader for Ghidra
  ☆29Updated 3 years ago
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆86Updated 5 years ago
• hugsy / bochscpu-python
  Python bindings for BochsCPU
  ☆37Updated 5 months ago
• cassanof / safe-llvm
  LLVM Without The ROP Gadgets!
  ☆25Updated 2 years ago
• zyantific / zydis-js
  Zydis JavaScript bindings via WASM
  ☆21Updated 2 years ago
• pd0wm / binaryninja-pcode
  This plugin serves as a bridge between Binary Ninja and Ghidra's disassembler.
  ☆36Updated 3 years ago
• ergot86 / hyperv_stuff
  Hyper-V related resources
  ☆31Updated last year
• NewWorldComingSoon / llvm-msvc-windows-driver-template
  Windows kernel driver template for cmkr and llvm-msvc.
  ☆35Updated 2 years ago
• LLVMParty / RemillWorkshop
  ☆62Updated 11 months ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆73Updated 2 years ago
• gerhart01 / Hyper-V-Tools
  Different tools for Microsoft Hyper-V researching
  ☆64Updated last month
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆27Updated 2 years ago
• archercreat / llvm_stuff
  LLVM based devirtualization PoC’s.
  ☆21Updated 4 years ago
• CzBiX / disasm-web
  Online Assembler and Disassembler, support offline usage.
  ☆53Updated 2 years ago
• samrussell / vmprotect_binja_plugin
  Binary Ninja plugin for automating VMProtect analysis
  ☆64Updated 3 years ago
• synacktiv / vmx_intrinsics
  VMX intrinsics plugin for Hex-Rays decompiler
  ☆73Updated 6 years ago
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆67Updated 2 years ago