x86matthew / WinVisor
WinVisor - A hypervisor-based emulator for Windows x64 user-mode executables using Windows Hypervisor Platform API
β548Updated 2 months ago
Alternatives and similar repositories for WinVisor:
Users that are interested in WinVisor are comparing it to the libraries listed below
- Single header version of System Informer's phnt library.β203Updated this week
- πͺ Windows User Space Emulatorβ898Updated this week
- Operating System Design Review: A systemic analysis of modern systems architectureβ306Updated last month
- Native API online documentation, based on the System Informer (formerly Process Hacker) phnt headersβ232Updated this week
- A DTrace on Windows Reimplementationβ342Updated last month
- The Definitive Guide To Process Cloning on Windowsβ462Updated last year
- Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!β329Updated 5 months ago
- Simple x86/x64 Assembler/Disassembler/Emulatorβ179Updated 7 months ago
- Native code virtualizer for x64 binariesβ473Updated 3 months ago
- A tutorial on how to write a packer for Windows!β258Updated last year
- PE bin2bin obfuscatorβ654Updated last month
- Debugger Anti-Detection Benchmarkβ323Updated last year
- HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate operβ¦β359Updated last year
- Important notes and topics on my journey towards mastering Windows Internalsβ368Updated 10 months ago
- An x86-64 Code Virtualizerβ247Updated 6 months ago
- RISC-V Virtual Machineβ214Updated last month
- msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.β151Updated last year
- A small x64 library to load dll's into memory.β435Updated last year
- A bare minimum hypervisor on AMD and Intel processors for learners.β256Updated last month
- Signtool for expired certificatesβ473Updated last year
- Process Injection using Thread Nameβ250Updated 6 months ago
- x86 Real-Mode MS-DOS Emulator using Windows Hypervisor Platformβ134Updated 8 months ago
- Perfect DLL Proxying using forwards with absolute paths.β263Updated 5 months ago
- Rusty Bootkit - Windows UEFI Bootkit in Rust (Codename: RedLotus)β526Updated last year
- Demo proof of concept for shadow regions, and implementation of HyperDeceit.β276Updated last year
- Web-based tool that allows comparing symbol, type and syscall information of Microsoft Windows binaries across different versions of the β¦β333Updated this week
- Cross-platform tool that allows browsing and extracting C and C++ type declarations from PDB files.β308Updated last month
- Collection of hypervisor detectionsβ226Updated 6 months ago
- Static deobfuscator for Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.β267Updated 7 months ago
- PE Viewerβ168Updated 2 months ago