Alternatives and similar repositories for pt-detector:

Users that are interested in pt-detector are comparing it to the libraries listed below

• IgorKorkin / AllMemPro
  AllMemPro
  ☆43Updated 7 years ago
• kernweak / Syscall-Monitor
  大表哥的Syscall-Monitor
  ☆34Updated 5 years ago
• Iamgublin / libemu_pe
  enable libemu run pe file and add some good modify
  ☆14Updated 6 years ago
• yardenshafir / KernelDataStructureFinder
  Driver and WinDBG scripts to dump information about all resources and lookaside lists
  ☆67Updated 4 years ago
• usualsuspect / ida_stuff
  ☆27Updated 6 years ago
• progmboy / win32kext
  windbg plugin for win32k debugging
  ☆73Updated 5 years ago
• cow0o0 / VM
  vm -- code interpreter
  ☆26Updated 5 years ago
• Barakat / windows.sandbox
  Windows sandbox PoC
  ☆31Updated 4 years ago
• Tekiter / WatchDBG-IDA
  IDA 7.0 meets watch view!
  ☆42Updated 3 years ago
• dro / win10-ida-types
  Windows 10 kernel and ntdll internal types, directly compatible with ida.
  ☆50Updated 6 years ago
• dcdelia / sniper
  Robust API monitoring system presented in the paper "Designing Robust API Monitoring Solutions" (IEEE TDSC)
  ☆23Updated 3 years ago
• mq1n / Wow64SyscallHook
  Wow64 syscall hook
  ☆40Updated 7 years ago
• JKornev / cfgdump
  Windbg extension that allows you analyze Control Flow Guard map
  ☆34Updated 3 years ago
• ajkhoury / Windbg2Struct
  Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure
  ☆35Updated 8 months ago
• SinaKarvandi / x64-Driver-Inline-Assembly
  This is a simple driver with x64 inline assembly
  ☆54Updated 4 years ago
• BlackLuny / WinIPTCollector
  Intel Processor Trace package collector for Windows
  ☆17Updated 4 years ago
• yuvatia / Win10GdiExploitation
  Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.
  ☆24Updated 7 years ago
• JaanusKaapPublic / BlogHyperV
  Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/
  ☆55Updated 4 years ago
• SouhailHammou / KernelSymbolsHelper
  Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…
  ☆53Updated 5 years ago
• fdfalcon / TypeIsolationDbg
  A little WinDbg extension to help dump the state of Win32k Type Isolation structures.
  ☆38Updated 7 years ago
• trailofbits / cfg-showcase
  Sample programs that illustrate how to use Control Flow Guard, VS2015's control flow integrity implementation
  ☆48Updated 8 years ago
• redplait / armpatched
  clone of armadillo patched for windows
  ☆47Updated 4 months ago
• heyitsanthony / vexllvm
  Decode machine code into VEX IR and translate into LLVM IR
  ☆26Updated 5 years ago
• KelvinMsft / UsbMon
  ☆34Updated 4 years ago
• SinaKarvandi / Pinitor
  An API Monitor based on Instrumentation
  ☆43Updated 7 years ago
• wcventure / PC-Malware-Sklearner
  [SmartCom2017] An Effective Malware Detection based on Behaviour and Data Feature
  ☆19Updated 6 years ago
• SinaKarvandi / VMCS-Auditor
  VMCS Auditor provides almost all of Intel's VMCS Layout checklist based on Bochs Emulator.
  ☆32Updated 6 years ago
• xiaobfly / AnalyzePdb
  ☆27Updated 5 years ago
• intelpt / winafl-intelpt
  A fork of AFL for fuzzing Windows binaries
  ☆53Updated 6 years ago
• tandasat / ia32-doc
  IA32-doc is a project which aims to put as many definitions from the Intel Manual into machine-processable format as possible
  ☆16Updated 2 years ago