A cross-platform rust no-std library for verifying and extracting signature information from PE files.
☆73Dec 2, 2024Updated last year
Alternatives and similar repositories for pe-sign
Users that are interested in pe-sign are comparing it to the libraries listed below
Sorting:
- Process Injection via Component Object Model (COM) IRundown::DoCallback().☆66Jan 17, 2023Updated 3 years ago
- etw hook (syscall/infinity hook) compatible with the latest Windows version of PG☆328Apr 27, 2024Updated last year
- ☆15Jan 16, 2024Updated 2 years ago
- an encryption library designed for Windows kernel and driver programming☆124Aug 4, 2023Updated 2 years ago
- query-pdb is a server-side software for parsing PDB files. The software provides PDB online parsing service.☆167Oct 27, 2025Updated 4 months ago
- ☆24Jul 15, 2023Updated 2 years ago
- A very simple C++ library for download pdb, get rva of function, global variable and offset from struct.☆159Mar 26, 2024Updated last year
- ☆37May 9, 2023Updated 2 years ago
- 使用 Intel 虚拟化特性实现应用层HOOK☆66Sep 11, 2025Updated 6 months ago
- This program can retrieve signature information from PE files which signed by one or more certificates on Windows. Supporting multi-signe…☆105Sep 20, 2022Updated 3 years ago
- ☆27Jan 4, 2024Updated 2 years ago
- ☆18Mar 28, 2023Updated 2 years ago
- ☆39Mar 12, 2019Updated 7 years ago
- Use ci.dll API for validating Authenticode signature of files☆167Mar 28, 2022Updated 3 years ago
- kHypervisor is a lightweight bluepill-like nested VMM for Windows, it provides and emulating a basic function of Intel VT-x☆446Nov 29, 2021Updated 4 years ago
- Check if your AV/EDR does inline hooking, displays the hooked functions and allows you to compare them with the original ones.☆37Apr 24, 2025Updated 10 months ago
- Static user/kernel mode library that allows access to all functions and global variables by extracting offsets from the PDB☆118May 29, 2025Updated 9 months ago
- A script for generating source code for DLLs used for hijacking and injection. 一个用于生成劫持与注入用 DLL 源代码的脚本。☆22Nov 30, 2025Updated 3 months ago
- ☆19Jul 20, 2015Updated 10 years ago
- Windows aero overlay with Direct2D & DirectWrite support☆11May 1, 2016Updated 9 years ago
- Fix VMProtect 3.xx (tested 3.0.9 to 3.5.0)☆18Feb 1, 2022Updated 4 years ago
- 一个32位windows下x86指令集的代码扭曲加密小工具☆33Mar 15, 2019Updated 7 years ago
- ☆47Feb 3, 2025Updated last year
- Process Monitor X v2☆651Jan 22, 2024Updated 2 years ago
- FastSymApi - A Fast API PDB Symbol Cache Server that efficiently caches and compresses PDBs on disk for quick and repeated retrieval.☆19Feb 12, 2026Updated last month
- ☆174Sep 9, 2020Updated 5 years ago
- 一个windows内核驱动分析框架,对内核所有导出函数进行挂钩监控☆69Nov 19, 2025Updated 4 months ago
- a monitoring windows driver calls kernel api tools☆129Jul 5, 2024Updated last year
- Another wow64ext to try to be compatible with WOW64 for all architectures.☆98Jan 1, 2026Updated 2 months ago
- Modern C++ wrapper for Windows PE signature verification mechanism☆30Aug 9, 2019Updated 6 years ago
- 可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。☆109Sep 1, 2022Updated 3 years ago
- An API Monitor based on Instrumentation☆43Dec 19, 2017Updated 8 years ago
- Blazingly Fast Pseudo Random Number Generator written in Rust☆22Sep 21, 2024Updated last year
- windows kernel File redirection☆20Sep 21, 2014Updated 11 years ago
- a Windows kernel Pdb parsing and downloading library that running purely in kernel mode without any R3 programs.☆177Sep 13, 2024Updated last year
- A POC to detect the exist of VMProtect 3 protection by search feature watermark.☆84Dec 16, 2023Updated 2 years ago
- A cross-platform library for verifying Authenticode signatures☆163Nov 24, 2025Updated 3 months ago
- ☆39Oct 29, 2020Updated 5 years ago
- Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.☆917Dec 29, 2025Updated 2 months ago