vmcall/latebros

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/vmcall/latebros)

vmcall / latebros

x64 usermode rootkit

☆211

Alternatives and similar repositories for latebros

Users that are interested in latebros are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

vmcall / tasklist-brutus
View on GitHub
Undocumented way of fetching list of processes by bruteforcing NtQuerySystemInformation
☆16Nov 20, 2017Updated 8 years ago
vmcall / loadlibrayy
View on GitHub
x64 manualmapper with kernel elevation and thread hijacking capabilities
☆422Jan 3, 2020Updated 6 years ago
vmcall / eye_mapper
View on GitHub
BattlEye x64 usermode injector
☆66Mar 20, 2019Updated 7 years ago
vmcall / nt-mapper
View on GitHub
C++17 PE manualmapper
☆454Oct 2, 2021Updated 4 years ago
notscimmy / libinject
View on GitHub
Currently supports injecting signed/unsigned DLLs in 64-bit processes
☆59Sep 14, 2020Updated 5 years ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
zer0mem / VadScanner
View on GitHub
PoC of BOOST-ed _EPROCESS.VadRoot iterating
☆27May 21, 2014Updated 12 years ago
wyrover / CodeLib
View on GitHub
常用代码类
☆13May 31, 2014Updated 11 years ago
vmcall / nt
View on GitHub
NT reversal
☆25Jul 12, 2018Updated 7 years ago
vmcall / x64-vm
View on GitHub
x86-64 virtual machine and disassembler
☆148Nov 23, 2019Updated 6 years ago
can1357 / ByePg
View on GitHub
Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.
☆906Nov 21, 2019Updated 6 years ago
StrikerX3 / haxmclient
View on GitHub
HAXM hypervisor client
☆18Nov 30, 2018Updated 7 years ago
ldebug / Resurgence
View on GitHub
A Windows game hacking framework
☆42Sep 7, 2016Updated 9 years ago
uniking / TDI-Demo
View on GitHub
☆17Mar 3, 2016Updated 10 years ago
KelvinMsft / ScreenCapAttack
View on GitHub
☆35Oct 29, 2020Updated 5 years ago
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
vmcall / ElevateMe
View on GitHub
Handle access elevation via direct kernel object manipulation
☆117Jan 26, 2018Updated 8 years ago
vmcall / dxgkrnl_hook
View on GitHub
C++ graphics kernel subsystem hook
☆566Jan 11, 2021Updated 5 years ago
secrary / Hooking-via-InstrumentationCallback
View on GitHub
codes for my blog post: https://secrary.com/Random/InstrumentationCallback/
☆183Nov 30, 2017Updated 8 years ago
lennyRBLX / readwrite-kernel-stable
View on GitHub
a more stable & secure read/write virtual memory for kernel mode drivers
☆159Mar 8, 2020Updated 6 years ago
SamLarenN / Kernel-Hijack
View on GitHub
☆14Apr 7, 2018Updated 8 years ago
zouxianyu / KernelHiddenExecute
View on GitHub
Hide codes/data in the kernel address space.
☆187May 8, 2021Updated 5 years ago
zhuhuibeishadiao / NewHideDriverEx
View on GitHub
Hide Driver By MiProcessLoaderEntry
☆291May 17, 2019Updated 7 years ago
y11en / PEBFake
View on GitHub
PEBFake(修改PEB 伪装当前进程路径、参数等)
☆55Jan 19, 2021Updated 5 years ago
HoShiMin / EnjoyTheRing0
View on GitHub
Шаблон полнофункционального драйвера и обёртки над ядерным API
☆112Aug 28, 2016Updated 9 years ago
Proton VPN Special Offer - Get 70% off • Ad
Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
noct-ml / kerneldetective
View on GitHub
Kernel Detective
☆154Mar 7, 2026Updated 2 months ago
ldebug / ObRegisterCallBacksByPass
View on GitHub
Modify process handle permissions
☆61Nov 30, 2016Updated 9 years ago
JustasMasiulis / wow64pp
View on GitHub
A modern c++ implementation of windows heavens gate
☆245Sep 19, 2020Updated 5 years ago
johnsonjason / RVDbg
View on GitHub
RVDbg is a debugger/exception handler for Windows processes and has the capability to circumvent anti-debugging techniques. (Cleaner, doc…
☆72Sep 5, 2020Updated 5 years ago
mlghuskie / NoBastian
View on GitHub
NoBastian - Universal Ring3 IPC based BattlEye/EAC/FaceIt/ESEA/MRAC bypass
☆147Jun 17, 2018Updated 7 years ago
vmcall / MapDetection
View on GitHub
Detect manualmapped images remotely, without hassle
☆151Nov 3, 2017Updated 8 years ago
tandasat / FU_Hypervisor
View on GitHub
A hypervisor hiding user-mode memory using EPT
☆107Jan 28, 2018Updated 8 years ago
SLAUC91 / AntiCheat
View on GitHub
RootKit & Cheat Scanner - Windows
☆225Aug 9, 2019Updated 6 years ago
SamLarenN / CPUZ-DSEFix
View on GitHub
Exploiting CPU-Z Driver To Turn Load Unsigned Drivers
☆131Aug 10, 2017Updated 8 years ago
Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
Mattiwatti / BSOD10
View on GitHub
Crash Windows 10 up to RS2 from an unprivileged process
☆42Dec 10, 2017Updated 8 years ago
btbd / umap
View on GitHub
UEFI bootkit for driver manual mapping
☆595Jan 1, 2024Updated 2 years ago
d35ha / RunPE
View on GitHub
An example of PE hollowing injection technique
☆25Jun 28, 2019Updated 6 years ago
SinaKarvandi / Process-Magics
View on GitHub
This is a collection of interesting codes about Windows Process creation.
☆239Jan 12, 2024Updated 2 years ago
d366 / DarkMMap
View on GitHub
Manual PE image mapper
☆65Aug 29, 2013Updated 12 years ago
ciyze0101 / Windows-Rootkits
View on GitHub
☆514Nov 21, 2020Updated 5 years ago
waryas / UMPMLib
View on GitHub
A library to manipulate physical memory from usermode.
☆302Sep 5, 2023Updated 2 years ago