A library to read/write memory to Windows on KVM

my patches for linux kernel to spoof rdtsc and make vm exit undetected

Kernel module to evade KVM's detection through RDTSC timer

Cuckoo3 is a Python 3 open source automated malware analysis system.

VirtualBox VM detection mitigation loader

Virtual Machine Introspection, Tracing & Debugging

The research UEFI hypervisor that supports booting an operating system.

A free Windows-compatible Operating System

CFB is a ProcMon-style tool designed to assist capturing IRPs sent to Windows drivers.

The Serenity Operating System 🐞

Sandboxie Plus & Classic

A research project about Windows notify routines.

Windows kernel hacking framework, driver template, hypervisor and API written on C++

Research on Windows Kernel Executive Callback Objects

*UNOFFICIAL* mirror of the repository at http://www.virtualbox.org/svn/vbox/trunk (the first 30569 commits are courtesy of https://gitorious.org/virtualbox/mainlinemirror); Please **DO NOT** open p…

Command line tracing tool for Windows, based on ETW.

🍬 All-new engine of the @GreenteaOS

Disable PatchGuard and Driver Signature Enforcement at boot time

Logging library for kernel drivers written for the Windows NT operating system.

Windows Kernel API wrapper with simplified functions and enterprise driver extensions.

A branch-monitor-based solution for process monitoring.

Anti-Malware security solution for Windows environment.

The Magic Mask for Android

一个深挖 Linux 内核的新功能特性，以 io_uring, cgroup, ebpf, llvm 为代表，包含开源项目，代码案例，文章，视频，架构脑图等

eBPF implementation that runs on top of Windows

A Linux x86/x86-64 tool to trace registers and memory regions.

Apex Legends QEMU/KVM hack

bpf 学习仓库