Detects virtual machines and malware analysis environments
ā146Oct 18, 2022Updated 3 years ago
Alternatives and similar repositories for Hypervisor-Detection
Users that are interested in Hypervisor-Detection are comparing it to the libraries listed below
Sorting:
- Kernel driver for detecting Intel VT-x hypervisors.ā202Jul 11, 2023Updated 2 years ago
- šŖ Various EPT hook detection approachesā143Feb 22, 2026Updated 3 weeks ago
- Windows kernel driver that detects hypervisors by probing SIDT/LIDT edge cases, paging/TLB behaviors, privilege transitions, and timing eā¦ā37Mar 3, 2026Updated 2 weeks ago
- EDR PoC WIP LLCā10Feb 9, 2024Updated 2 years ago
- A simple python script to check evil Visual Studio projectsā21Oct 13, 2023Updated 2 years ago
- kernel mode anti cheatā646Aug 4, 2024Updated last year
- A mapper that maps shellcode into loaded large page driversā329Apr 26, 2022Updated 3 years ago
- a monitoring windows driver calls kernel api toolsā129Jul 5, 2024Updated last year
- A simple emulator for Windows designed for reverse engineering, testing binary files, and execution logging.ā54Jul 6, 2025Updated 8 months ago
- Collection of hypervisor detectionsā300Sep 25, 2024Updated last year
- A demonstration of hooking into the VMProtect-2 virtual machineā24Nov 9, 2023Updated 2 years ago
- Simple String Cleaner for .NET Reactor 6.7.0.0 using Invokeā10May 27, 2021Updated 4 years ago
- Cheat for my own game SecureGame which uses a bootkit to hyperjack Hyper-V in order to access VBS enclave's memoryā116Dec 8, 2024Updated last year
- Recursive and arbitrary code execution at kernel-level without a system thread creationā159Apr 13, 2023Updated 2 years ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.ā78Mar 29, 2025Updated 11 months ago
- ā18Jan 11, 2026Updated 2 months ago
- Browse Page Tables on Windows (Page Table Viewer)ā236Apr 2, 2022Updated 3 years ago
- Lightweight Intel VT-x Hypervisor.ā669Dec 17, 2024Updated last year
- Standard Kernel Library for Windows manipulation in C++ā203Jun 18, 2025Updated 9 months ago
- ā225Mar 11, 2023Updated 3 years ago
- Rusty Hypervisor - Windows UEFI Blue Pill Type-1 Hypervisor in Rust (Codename: Illusion)ā351Aug 31, 2024Updated last year
- A library to assist with memory & code protection.ā66Mar 7, 2024Updated 2 years ago
- Me fockin' pe protectorā45Nov 19, 2022Updated 3 years ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuardā271Aug 31, 2022Updated 3 years ago
- Reimplementation of Microsoft's Warbird obuscatorā207Jun 24, 2024Updated last year
- Simple Controlflow Deobfuscator for .NET Reactor 6.7.0.0ā16May 27, 2021Updated 4 years ago
- How Meltdown and Spectre haunt Anti-Cheat: DVRT detailsā22Aug 21, 2024Updated last year
- etw hook (syscall/infinity hook) compatible with the latest Windows version of PGā328Apr 27, 2024Updated last year
- An x86-64 Code Virtualizerā310Sep 26, 2024Updated last year
- A simple hypervisor demonstrating the use of the Intel VT-rp (redirect protection) technology.ā114Mar 28, 2024Updated last year
- ā144Dec 10, 2022Updated 3 years ago
- ā642May 30, 2023Updated 2 years ago
- Mixed Boolean-Arithmetic in Rust for WebAssemblyā30Jun 14, 2025Updated 9 months ago
- protector & obfuscator & code virtualizerā703Updated this week
- VMProtect, VMP, Devirter, 3,5ā112Jan 30, 2023Updated 3 years ago
- Fix VMProtect 3.xx (tested 3.0.9 to 3.5.0)ā18Feb 1, 2022Updated 4 years ago
- Turn off PatchGuard in real time for win7 (7600) ~ laterā1,038Apr 21, 2022Updated 3 years ago
- ā309May 11, 2023Updated 2 years ago
- Integration of Microsoft Warbird with the MSVC compilerā133Jul 16, 2023Updated 2 years ago