Alternatives and similar repositories for PE-Parser

Users that are interested in PE-Parser are comparing it to the libraries listed below

• jonaslyk / temp
  ☆71Updated 2 years ago
• magnusstubman / dll-exports
  Collection of DLL function export forwards for DLL export function proxying
  ☆105Updated last month
• zodiacon / winnativeapibooksamples
  Samples from my book Windows Native API programming
  ☆76Updated 4 months ago
• hMihaiDavid / addscn
  Add an empty section to a PE file
  ☆53Updated 8 years ago
• EgeBalci / Hook_API
  Assembly block for hooking windows API functions.
  ☆93Updated 6 years ago
• Dump-GUY / sc2pe
  Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE
  ☆66Updated 2 years ago
• zodiacon / youtubecode
  Youtube channel sample code
  ☆52Updated this week
• hasherezade / shellc_encoder
  Standalone Metasploit-like XOR encoder for shellcode
  ☆50Updated last year
• XaFF-XaFF / WinREPL
  WinREPL is a "read-eval-print loop" shell on Windows that is useful for testing/learning x86 and x64 assembly.
  ☆17Updated 3 years ago
• therealdreg / shellex
  C-shellcode to hex converter, handy tool for paste & execute shellcodes in IDA PRO, gdb, windbg, radare2, ollydbg, x64dbg, immunity debug…
  ☆115Updated 2 years ago
• accidentalrebel / shcode2exe
  Compile shellcode into an exe file from Windows or Linux.
  ☆69Updated 3 months ago
• Coalfire-Research / ERC.Xdbg
  An Xdbg Plugin of the ERC Library.
  ☆26Updated last year
• m417z / x64dbg-xfg-marker
  An x64dbg plugin which marks XFG call signatures as data
  ☆77Updated 2 years ago
• zodiacon / syllabi
  ☆63Updated last year
• 0xMegaByte / COM-Explained
  ☆26Updated 3 years ago
• irql / CVE-2021-31728
  vulnerability in zam64.sys, zam32.sys allowing ring 0 code execution. CVE-2021-31727 and CVE-2021-31728 public reference.
  ☆91Updated 4 years ago
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆79Updated 2 years ago
• dr4k0nia / XorStringsNET
  Easy XOR string encryption for NET based binaries
  ☆140Updated last year
• lilkui / runasti
  Runs programs as TrustedInstaller
  ☆49Updated 6 years ago
• zodiacon / MalDevWorkshopWebinar
  Demo from the Malware Analysis and Development Webinar
  ☆23Updated last year
• avast / pe_tools
  A cross-platform Python toolkit for parsing/writing PE files.
  ☆66Updated last year
• EgeBalci / IAT_API
  Assembly block for finding and calling the windows API functions inside import address table(IAT) of the running PE file.
  ☆77Updated 2 years ago
• uf0o / rootkit-arsenal-guacamole
  An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples
  ☆71Updated 3 years ago
• zodiacon / TraceConnections
  Simple example for getting started with eBPF for Windows
  ☆47Updated 7 months ago
• m417z / thread-call-stack-scanner
  Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…
  ☆79Updated 3 months ago
• zerosum0x0-archive / archive
  ☆55Updated 3 years ago
• milkdevil / injectAllTheThings
  ☆75Updated 8 years ago
• hidd3ncod3s / WindowsAPIhash
  Windows API Hashes used in the malwares
  ☆42Updated 10 years ago
• goatmilkkk / TinyProcessor
  A post-processing script for TinyTracer
  ☆37Updated 2 years ago
• am0nsec / wkpe
  Windows Kernel Programming Experiments
  ☆80Updated 3 years ago