Alternatives and similar repositories for nt-load-order

Users that are interested in nt-load-order are comparing it to the libraries listed below

• connormcgarr / SkBridge
  Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1
  ☆67Updated 2 months ago
• tandasat / CVE-2024-21305
  Report and exploit of CVE-2024-21305.
  ☆38Updated last year
• N0fix / IDA_rust_metadata_finder
  IDA plugin to recover source code from panic information on rust
  ☆17Updated 6 months ago
• codedefender-io / windows
  ntoskrnl.exe and bootmgfw.efi obfuscated with CodeDefender
  ☆49Updated 3 weeks ago
• jonpalmisc / limoncello
  Yet another LLVM-based obfuscator
  ☆118Updated last year
• m417z / x64dbg-symbol-tldr
  An x64dbg plugin which helps make sense of long C++ symbols
  ☆57Updated 2 years ago
• redthing1 / w1tn3ss
  dynamic binary instrumentation, analysis, and patching framework
  ☆95Updated last month
• badhive / alca
  Rule Engine for Dynamic Malware Analysis and Research
  ☆25Updated 7 months ago
• backengineering / pdbgen2
  Generate a PDB file given the old PDB file and an address mapping
  ☆49Updated 3 months ago
• djolertrk / kovid-obfuscation-passes
  A set of LLVM and GCC based plugins that perform code obfuscation.
  ☆132Updated 3 weeks ago
• ssnob / hidden_syscall_monitoring
  monitors hidden syscalls called from call of duty anticheat
  ☆86Updated 10 months ago
• djolertrk / kLLDB
  LLDB based debugger for Linux Kernel
  ☆27Updated 7 months ago
• kkent030315 / detect-anyrun
  ANY.RUN sandbox detection collection
  ☆21Updated last year
• b-irb / PigPEI
  PEIM (UEFI) bootkit targeting OVMF (EDK2)
  ☆42Updated last year
• connormcgarr / Vtl1Mon
  Virtual Trust Level (VTL 1) secure call tracing
  ☆81Updated 2 months ago
• ergrelet / themida-spotter-bn
  A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.
  ☆85Updated last year
• MrRoy09 / VMwhere
  LLVM based obfuscation engine
  ☆106Updated 4 months ago
• HulkOperator / Spoof-RetAddr
  ☆28Updated last year
• AsuNa-jp / HotkeybasedKeyloggerDetector
  ☆20Updated 8 months ago
• m417z / x64dbg-xfg-marker
  An x64dbg plugin which marks XFG call signatures as data
  ☆77Updated 2 years ago
• tandasat / CVE-2023-36427
  Report and exploit of CVE-2023-36427
  ☆89Updated last year
• Rantanen / ghidra-minidump-loader
  Windows Minidump loader for Ghidra
  ☆29Updated 3 years ago
• backengineering / elderscroll
  PDB Rewriting Rust Library
  ☆25Updated last year
• AmitMoshel1 / PatchGuardEncryptorDriver
  An improved version of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.
  ☆72Updated 7 months ago
• keowu / Ryujin
  Ryūjin Protector - Is a Intel Arch - BIN2BIN - PE Obfuscation/Protection/DRM tool
  ☆83Updated this week
• un4ckn0wl3z / PCIE-Detector
  Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures
  ☆35Updated last year
• gerhart01 / Hyper-V-Tools
  Different tools for Microsoft Hyper-V researching
  ☆62Updated 4 months ago
• m417z / thread-call-stack-scanner
  Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…
  ☆78Updated 4 months ago
• Invoke-RE / binja-lattice-mcp
  Plugin interface for remote communications with Binary Ninja database and MCP server for interfacing with LLMs.
  ☆49Updated 5 months ago
• ic3qu33n / REcon2024-GOP-Complex
  REcon 2024 Repo, slides for talk "GOP Complex: Image parsing bugs, EBC polymorphic engines and the Deus ex machina of UEFI exploit dev""
  ☆14Updated 7 months ago