Emulate Drivers in RING3 with self context mapping or unicorn
☆34Dec 31, 2024Updated last year
Alternatives and similar repositories for KACE
Users that are interested in KACE are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A series of methods used to detect kernel shellcode for tencent game safe race 2024☆45Apr 22, 2024Updated last year
- ☆13Feb 18, 2021Updated 5 years ago
- ☆51Aug 29, 2024Updated last year
- repeater☆25Aug 25, 2023Updated 2 years ago
- IDA plugin to deobfuscate emotet CFF☆18Apr 26, 2022Updated 3 years ago
- an encryption library designed for Windows kernel and driver programming☆124Aug 4, 2023Updated 2 years ago
- (communication detected)a kernel driver for game cheater. includes read&write memory / key&mouse simulator / kernel DWM render / process …☆114May 9, 2025Updated 10 months ago
- old code from 2007/2008 which uses split TLB to trace OEP☆16Jun 16, 2018Updated 7 years ago
- Using Microsoft Visual Studio 2019 Building A LLVM Out-Source-Tree Pass☆17Apr 30, 2020Updated 5 years ago
- Emulate Drivers in RING3 with self context mapping or unicorn☆21Jan 1, 2025Updated last year
- Logging library for kernel drivers written for the Windows NT operating system.☆21Oct 17, 2025Updated 5 months ago
- 一个基于VT的开源调试器 界面是delphi编写☆173Mar 19, 2025Updated last year
- How to use PiDqSerializationWrite. Introduces how to safely read and write from mapped driver☆26May 29, 2023Updated 2 years ago
- 从MmPfnData中枚举进程和页目录基址☆208Aug 18, 2023Updated 2 years ago
- WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API☆26Apr 24, 2022Updated 3 years ago
- r/w virtual memory without attach☆224Oct 19, 2023Updated 2 years ago
- 巨硬☆17Oct 4, 2023Updated 2 years ago
- The modifyed cjson that can running on windows kernel☆15Mar 21, 2023Updated 3 years ago
- ☆23Oct 18, 2021Updated 4 years ago
- modern c++ wrapper around the microsoft portable executable file format☆35Nov 22, 2025Updated 4 months ago
- Example of reading process memory through kernel special APC☆111Apr 21, 2023Updated 2 years ago
- Hook NtDeviceIoControlFile with PatchGuard☆107May 10, 2022Updated 3 years ago
- ☆13Jul 12, 2025Updated 8 months ago
- 一个用来做windows内核hook的框架☆188Apr 29, 2025Updated 10 months ago
- Kernel dwm render☆171Oct 10, 2023Updated 2 years ago
- Win32 PE Anti-RE and Anti-debugging Framework☆13May 14, 2019Updated 6 years ago
- Lightweight Intel VT-x Hypervisor.☆672Dec 17, 2024Updated last year
- A project on the Unicorn emulator to emulate the code of Pe files in windows☆28Sep 12, 2024Updated last year
- 专为 Windows 平台设计的 API Hook 与汉化框架☆24Jul 11, 2025Updated 8 months ago
- This project can bypass most of the AC except for some perverts that enable VT to monitor page tables☆55May 16, 2024Updated last year
- "Mingw64 Driver Plus Plus": Mingw64, C++, DDK and (EA)STL made easy!☆44Mar 16, 2026Updated last week
- based on https://github.com/secrary/Hooking-via-InstrumentationCallback☆73Oct 29, 2019Updated 6 years ago
- ☆18Jan 11, 2026Updated 2 months ago
- ☆226Feb 21, 2023Updated 3 years ago
- VMLifter 是一个基于指令执行轨迹的语义提升工具,专注于值�依赖驱动的程序语义重建。☆45Mar 9, 2026Updated 2 weeks ago
- VinCSS Reverse Engineering, Malware Analysing Tools & Ultilities☆27Nov 26, 2021Updated 4 years ago
- Analyze Windows x64 Kernel Memory Layout☆130Nov 19, 2020Updated 5 years ago
- ☆193May 1, 2023Updated 2 years ago
- Simple Intel VT-x hypervisor☆360Dec 10, 2023Updated 2 years ago