☆26Sep 17, 2017Updated 8 years ago
Alternatives and similar repositories for Windows-Rootkits
Users that are interested in Windows-Rootkits are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆14Mar 8, 2019Updated 7 years ago
- 对debughelp的二次开发☆11Feb 20, 2023Updated 3 years ago
- ☆17Oct 31, 2022Updated 3 years ago
- Win7内核私有符号结构转储☆70Sep 3, 2021Updated 4 years ago
- old code from 2007/2008 which uses split TLB to trace OEP☆16Jun 16, 2018Updated 7 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Some crazy PE executables protection kernel driver☆20May 2, 2020Updated 5 years ago
- Logging library for kernel drivers written for the Windows NT operating system.☆21Oct 17, 2025Updated 5 months ago
- x64 Kernel Hooks Detection☆24Jan 1, 2017Updated 9 years ago
- Analyze Windows x64 Kernel Memory Layout☆130Nov 19, 2020Updated 5 years ago
- 不使用3环挂钩进行DWM桌面绘制☆82Dec 9, 2021Updated 4 years ago
- ☆12Dec 15, 2016Updated 9 years ago
- a dkom rootkit that targets windows x64 systems. the rootkit hooks and edits criticl memory sections in order to hide different resources…☆19Jul 5, 2023Updated 2 years ago
- PDB Explorer 是一个能够查看微软 pdb 文件(Program DataBase,程序数据库)的工具,它能够将 pdb 文件中的 struct、union 及 enum 类型的定义以 C/C++ 的语法显示出来,特别适合 Windows 底层研究人员及 DDK …☆38Jun 2, 2015Updated 10 years ago
- Original hVNC has been recoded to work with all version of windows above XP. Thanks to the original author for this wonderful tool.☆10Oct 13, 2021Updated 4 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- ☆39Mar 12, 2019Updated 7 years ago
- A simple example how to decrypt kernel debugger data block☆32Feb 8, 2021Updated 5 years ago
- windows rpc 使用MIDL+RPC实现HelloWorld☆23Mar 21, 2018Updated 8 years ago
- ☆14May 1, 2021Updated 4 years ago
- Hook NtDeviceIoControlFile with PatchGuard☆107May 10, 2022Updated 3 years ago
- pseudo-code to show how to disable patchguard with win10☆295Jan 13, 2018Updated 8 years ago
- A kernel mode Windows rootkit in development.☆49Dec 31, 2021Updated 4 years ago
- Try to transport the tcpip stack of ReactOS to Windows XP.☆17Feb 27, 2014Updated 12 years ago
- Kernel-based memory hacking framework communicating with a kernel driver via sockets.☆97May 25, 2021Updated 4 years ago
- NordVPN Special Discount Offer • AdSave on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
- a simple intel vt code both support x86 & x64. PatchGuard monitor.☆78Oct 28, 2021Updated 4 years ago
- Driver demonstrating how to register a DPC to asynchronously wait on an object☆51Jan 15, 2021Updated 5 years ago
- 对Windbg以Exdi模式下调试windows做一些修复☆21Aug 25, 2023Updated 2 years ago
- force delete runing .exe application file.or delete any locked file☆74Mar 21, 2023Updated 3 years ago
- Shows different icons for 64 and 32-bit DLLs. Register with RegSvr32 to install☆38Dec 28, 2024Updated last year
- Reverse engineered source code of the autochk rootkit☆211Nov 1, 2019Updated 6 years ago
- 热门网络游戏辅助开发教程☆19May 27, 2021Updated 4 years ago
- Driver Loader/BE Bypass/Win Malware(lol)☆36Jun 25, 2019Updated 6 years ago
- ☆60Feb 27, 2026Updated last month
- NordVPN Threat Protection Pro™ • AdTake your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
- Show Window Stations, Desktops and top level windows☆17Jun 10, 2023Updated 2 years ago
- ☆174Sep 9, 2020Updated 5 years ago
- posting example☆15May 11, 2020Updated 5 years ago
- Based on minhook☆34Sep 20, 2023Updated 2 years ago
- 巨硬☆17Oct 4, 2023Updated 2 years ago
- The Kernel-Mode Winsock library, supporting TCP, UDP and Unix sockets (DGRAM and STREAM).☆289Jan 27, 2025Updated last year
- A driver that hooks C: volume using symbolic link callback to track all FS access to the volume☆109Apr 24, 2020Updated 5 years ago