Alternatives and similar repositories for BsodSurvivor

Users that are interested in BsodSurvivor are comparing it to the libraries listed below

• amiryeshurun / HyperWin

  View on GitHub
  A native hypervisor designed for the Windows operating system
  ☆125Mar 6, 2021Updated 4 years ago
• SilverTuxedo / keval

  View on GitHub
  Call arbitrary Windows kernel-mode functions from Python on another machine
  ☆44Sep 17, 2021Updated 4 years ago
• vovkos / protolesshooks

  View on GitHub
  API monitoring via return-hijacking thunks; works without information about target function prototypes.
  ☆117May 26, 2020Updated 5 years ago
• Zero-Tang / SimpleWhpDemo

  View on GitHub
  Simple Demo of using Windows Hypervisor Platform
  ☆29Jul 14, 2025Updated 7 months ago
• DownWithUp / DynamicKernelShellcode

  View on GitHub
  An example of how x64 kernel shellcode can dynamically find and use APIs
  ☆104May 14, 2020Updated 5 years ago
• omerk2511 / Sparta

  View on GitHub
  A virtualization-based endpoint security solution for Windows
  ☆88May 23, 2021Updated 4 years ago
• Synestraa / Highcall-Library

  View on GitHub
  usermode standalone kernel interface
  ☆111Jul 9, 2018Updated 7 years ago
• ytk2128 / pe32-password

  View on GitHub
  A simple password-based PE encryptor for Windows 32-bit executables.
  ☆51Jan 9, 2025Updated last year
• waleedassar / SyscallNumberFinder

  View on GitHub
  ☆33Sep 24, 2021Updated 4 years ago
• repnz / apc-research

  View on GitHub
  APC Internals Research Code
  ☆167Jun 28, 2020Updated 5 years ago
• Cr4sh / KernelForge

  View on GitHub
  A library to develop kernel level Windows payloads for post HVCI era
  ☆483May 18, 2021Updated 4 years ago
• avakar / vcrtl

  View on GitHub
  C++ Exceptions in Windows Drivers
  ☆221Dec 21, 2020Updated 5 years ago
• secrary / Hooking-via-InstrumentationCallback

  View on GitHub
  codes for my blog post: https://secrary.com/Random/InstrumentationCallback/
  ☆183Nov 30, 2017Updated 8 years ago
• KelvinMsft / DeviceMon

  View on GitHub
  VT-based PCI device monitor (SPI)
  ☆158Oct 29, 2020Updated 5 years ago
• 0ffffffffh / system_call_hook_win10_1903

  View on GitHub
  This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness
  ☆53Sep 12, 2019Updated 6 years ago
• VollRagm / PTView

  View on GitHub
  Browse Page Tables on Windows (Page Table Viewer)
  ☆234Apr 2, 2022Updated 3 years ago
• mike1k / HookHunter

  View on GitHub
  Analyze patches in a process
  ☆259Jul 28, 2021Updated 4 years ago
• Ynob2000 / pvC

  View on GitHub
  ☆15Oct 7, 2020Updated 5 years ago
• hugsy / CFB

  View on GitHub
  CFB is a ProcMon-style tool designed to assist capturing IRPs sent to Windows drivers.
  ☆333Mar 26, 2024Updated last year
• thalium / icebox

  View on GitHub
  Virtual Machine Introspection, Tracing & Debugging
  ☆595Feb 22, 2022Updated 3 years ago
• bb107 / RtlWow64

  View on GitHub
  c++ implementation of windows heavens gate
  ☆70Feb 12, 2021Updated 5 years ago
• can1357 / vmware-rpc

  View on GitHub
  Header-only VMWare Backdoor API Implementation & Effortless VMX Patcher for Custom Guest-to-Host RPCs
  ☆106Dec 26, 2020Updated 5 years ago
• kkent030315 / PageTableInjection

  View on GitHub
  Code Injection, Inject malicious payload via pagetables pml4.
  ☆242Jul 7, 2021Updated 4 years ago
• nanoric / pkn

  View on GitHub
  core of pkn game hacking project. Including mainly for process management, memory management, and DLL injecttion. Also PE analysis, windo…
  ☆68Mar 2, 2019Updated 6 years ago
• MiroKaku / libwsk

  View on GitHub
  The Kernel-Mode Winsock library, supporting TCP, UDP and Unix sockets (DGRAM and STREAM).
  ☆275Jan 27, 2025Updated last year
• jxy-s / stlkrn

  View on GitHub
  C++ STL in the Windows Kernel with C++ Exception Support
  ☆434Aug 16, 2023Updated 2 years ago
• can1357 / NtRays

  View on GitHub
  Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
  ☆643Jan 28, 2025Updated last year
• maxkray13 / Cvc

  View on GitHub
  Communication via callback
  ☆73Oct 9, 2019Updated 6 years ago
• IgorKorkin / MemoryRanger

  View on GitHub
  MemoryRanger protects kernel data and code by running drivers and hosting data in isolated kernel enclaves using VT-x and EPT features. M…
  ☆232Jul 26, 2020Updated 5 years ago
• yardenshafir / DpcWait

  View on GitHub
  Driver demonstrating how to register a DPC to asynchronously wait on an object
  ☆50Jan 15, 2021Updated 5 years ago
• zhuhuibeishadiao / PatchGuardResearch

  View on GitHub
  win10 pgContext dynamic dump (btc version)
  ☆110Jan 15, 2020Updated 6 years ago
• bitdefender / napoca

  View on GitHub
  Lightweight type-1 hypervisor offering a foundation for building advanced security-focused functionality.
  ☆281Jan 13, 2025Updated last year
• DragonQuestHero / WindowsKernelPrivateSymbolsDump

  View on GitHub
  Win7内核私有符号结构转储
  ☆70Sep 3, 2021Updated 4 years ago
• KelvinMsft / NoTruth

  View on GitHub
  ☆99Oct 6, 2017Updated 8 years ago
• Zero-Tang / NoirVisor

  View on GitHub
  The Grimoire Hypervisor solution for x86 Processors with experimental nested virtualization support. Remastering with Rust in progress.
  ☆606Feb 1, 2026Updated 2 weeks ago
• yardenshafir / KernelDataStructureFinder

  View on GitHub
  Driver and WinDBG scripts to dump information about all resources and lookaside lists
  ☆66Apr 4, 2020Updated 5 years ago
• zodiacon / ProcMonXv2

  View on GitHub
  Process Monitor X v2
  ☆648Jan 22, 2024Updated 2 years ago
• amiryeshurun / HyperWin-Communication-Driver

  View on GitHub
  A driver that supports communication between a Windows guest and HyperWin
  ☆15Jan 6, 2021Updated 5 years ago
• allogic / KDBG

  View on GitHub
  The windows kernel debugger consists of two parts, KMOD which is the kernel driver handling ring3 request and KCLI, the command line inte…
  ☆99Sep 12, 2022Updated 3 years ago