Alternatives and similar repositories for hf-2011

Users that are interested in hf-2011 are comparing it to the libraries listed below

• xue-blood / tdifw
  copy of tdifw lib
  ☆10Updated 8 years ago
• cxxrev0to1dev / lz77win_sources
  lz77win sources!lz77 is the compression software for the windows platform.
  ☆24Updated 6 years ago
• zhuhuibeishadiao / KernelHooksDetection_x64
  x64 Kernel Hooks Detection
  ☆24Updated 8 years ago
• BrunoMCBraga / Kernel-Whisperer
  ☆29Updated 4 years ago
• Scorbutics / InjectItx64
  Basic Injector running on x64 machines that is able to load into x64 AND x86 processes
  ☆21Updated 6 years ago
• kdmarti2 / FileSpy
  ☆14Updated 4 years ago
• TaoistBrickscarrier / WFPKit
  粗暴地枚举管理内核的WFP对象。 Manage kernel WFPs in a brutal way.
  ☆27Updated 7 years ago
• hyzhangzhy / WindowX
  给windows窗口全局添加一些功能。
  ☆21Updated 6 years ago
• KelvinMsft / ScreenCapAttack
  ☆33Updated 4 years ago
• codereba / netmon
  network filter driver that control network send speed, based on windows tdi framework.
  ☆31Updated last year
• binbibi / CallbackEx
  Demo List cm/ps/ob/minifilter callback And Patch/Bypass it
  ☆29Updated 7 years ago
• AzureGreen / ArkToolDrv
  An ark tool's driver
  ☆40Updated 8 years ago
• JKornev / PE-Compare-Tools
  UI application that can compare PE images in memory or in raw PE file
  ☆18Updated 11 years ago
• lcxl / lcxl-shadow
  LCXL影子系统
  ☆46Updated last year
• zhuhuibeishadiao / UserMemoryOperation64
  Map memory to user space and manipulate user memory, using capmon
  ☆24Updated 6 years ago
• emc2314 / PEZEncrypt
  PE Infector/Cryptor source code
  ☆15Updated 8 years ago
• cswuyg / win_net
  windows net program
  ☆13Updated 10 years ago
• DeviceObject / ShitDrv
  ☆15Updated last year
• meiningnie / HookNdis
  a network filter using NDIS hook technique
  ☆19Updated 12 years ago
• zhaolong / libparser
  解析静态库(Lib)文件，提取出所有函数信息，组织成自定义格式文件
  ☆38Updated 12 years ago
• cxz456999 / Win32ApiHookDetector
  Win32 API Hook偵測
  ☆10Updated 7 years ago
• smartdj / pdbexp
  PDB Explorer 是一个能够查看微软 pdb 文件（Program DataBase，程序数据库）的工具，它能够将 pdb 文件中的 struct、union 及 enum 类型的定义以 C/C++ 的语法显示出来，特别适合 Windows 底层研究人员及 DDK …
  ☆38Updated 10 years ago
• hostzhen / sysark
  Sysark全称system anti-rootkit，是我学习内核写的工具（2013年的代码，后续不会再更新），里面基本上所有的功能都是用内核实现的。这里只是实现了反rootkit部分功能，作为工具的话，本人觉得还欠完善，但作为学习，或有人需要。目前针对的是XP SP2，…
  ☆27Updated 7 years ago
• imgits / ShellcodeVM
  ShellcodeVM
  ☆15Updated 9 years ago
• j321521621 / pipemonitor
  管道监视器,类似于spyxx之类的东西,一般用于监视目标进程的系统调用.关键词:detours+piep
  ☆23Updated 11 years ago
• arcpop / Observer
  ☆17Updated 8 years ago
• wyrover / CodeLib
  常用代码类
  ☆13Updated 11 years ago
• wjcsharp / Common
  Shareds for kernel developement
  ☆28Updated 11 years ago
• zer0mem / VadScanner
  PoC of BOOST-ed _EPROCESS.VadRoot iterating
  ☆25Updated 11 years ago
• JokerMars / MiniEngine
  Final Transparent encrypted version
  ☆14Updated 8 years ago