Simple x86/x64 Assembler/Disassembler/Emulator
☆188Dec 13, 2025Updated 2 months ago
Alternatives and similar repositories for QuickAsm
Users that are interested in QuickAsm are comparing it to the libraries listed below
Sorting:
- Native code virtualizer for x64 binaries☆517Dec 20, 2024Updated last year
- Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.☆590Aug 2, 2025Updated 7 months ago
- Demo from the Malware Analysis and Development Webinar☆25Apr 17, 2024Updated last year
- Hooking Windows' exception dispatcher to protect process's PML4☆228Jan 24, 2025Updated last year
- A small x64 library to load dll's into memory.☆457Nov 6, 2023Updated 2 years ago
- Windows KASLR bypass using prefetch side-channel☆177Apr 26, 2024Updated last year
- 对debughelp的二次开发☆11Feb 20, 2023Updated 3 years ago
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆163Aug 23, 2024Updated last year
- Explore Kernel Objects on Windows☆243Apr 4, 2025Updated 10 months ago
- Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.☆242Sep 26, 2023Updated 2 years ago
- Recon 2023 slides and code☆79Jun 9, 2023Updated 2 years ago
- Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book☆118Jun 30, 2024Updated last year
- Rusty Hypervisor - Windows Kernel Blue Pill Type-2 Hypervisor in Rust (Codename: Matrix)☆321Jul 7, 2024Updated last year
- Windows Research Kernel☆37Sep 22, 2025Updated 5 months ago
- Dont Call Me Back - Dynamic kernel callback resolver. Scan kernel callbacks in your system in a matter of seconds!☆249Jul 9, 2024Updated last year
- An x86-64 Code Virtualizer☆309Sep 26, 2024Updated last year
- HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate oper…☆379Jun 3, 2023Updated 2 years ago
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆130Feb 1, 2026Updated last month
- Uses Threat-Intelligence ETW events to identify shellcode regions being hidden by fluctuating memory protections☆169May 17, 2023Updated 2 years ago
- PE (and elf now!) bin2bin obfuscator☆820Oct 11, 2025Updated 4 months ago
- Kernel ReClassEx☆68Nov 21, 2023Updated 2 years ago
- Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!☆409Apr 19, 2025Updated 10 months ago
- Using Windows' own bootloader as a shim to bypass Secure Boot☆225Jul 17, 2024Updated last year
- Anti-Rootkit/Anti-Cheat Driver to uncover unbacked or hidden kernel code.☆297Dec 10, 2025Updated 2 months ago
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆84Dec 21, 2022Updated 3 years ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆388Jul 6, 2022Updated 3 years ago
- Bypassing kernel patch protection runtime☆22Feb 19, 2023Updated 3 years ago
- Collection of hypervisor detections☆297Sep 25, 2024Updated last year
- Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths☆360Aug 11, 2024Updated last year
- ☆22Jan 15, 2025Updated last year
- javascript extension of windbg for hacker.☆18Jun 27, 2023Updated 2 years ago
- KSOCKET provides a very basic example how to make a network connections in the Windows Driver by using WSK☆541Sep 2, 2022Updated 3 years ago
- ☆149Jan 25, 2024Updated 2 years ago
- Titan is a VMProtect devirtualizer☆118Mar 6, 2024Updated last year
- PoCs for Kernelmode rootkit techniques research.☆432Nov 4, 2025Updated 3 months ago
- Samples from my book Windows Native API programming☆79May 11, 2025Updated 9 months ago
- Debug Print viewer (user and kernel)☆72Feb 7, 2024Updated 2 years ago
- Disassembler for Zeus VM custom instruction set☆31Feb 12, 2024Updated 2 years ago
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆159Apr 13, 2023Updated 2 years ago