Alternatives and similar repositories for PE-Runtime-Data-Structures

Users that are interested in PE-Runtime-Data-Structures are comparing it to the libraries listed below

• deroko / activationcontexthook
  ☆33Updated 7 years ago
• dsnezhkov / exclave
  ☆16Updated 4 years ago
• hasherezade / pe_utils
  A set of small utilities, helpers for PIN tracers
  ☆33Updated last year
• deroko / SPPLUAObjectUacBypass
  ☆45Updated 6 years ago
• hasherezade / tag_converter
  ☆22Updated 4 years ago
• 86hh / cfg-teleport-demo
  Control Flow Guard Teleportation demo
  ☆23Updated 5 years ago
• 86hh / POC-viruses
  POC viruses I have created to demo some ideas
  ☆59Updated 5 years ago
• airbus-cert / ttd2mdmp
  Extract data of TTD trace file to a minidump
  ☆28Updated last year
• reb311ion / emerald
  Import DynamoRIO drcov code coverage data into Ghidra
  ☆43Updated last year
• nccgroup / ICPin
  An Integrity-Check Monitoring Pintool
  ☆57Updated 4 years ago
• hotnops / RemoteDebugView
  A DLL that serves OutputDebugString content over a TCP connection
  ☆35Updated 3 years ago
• securesean / Shim-Process-Scanner
  Windows x64 Process Scanner to detect application compatability shims
  ☆37Updated 6 years ago
• shamrockhoax / mazedecoder
  ☆28Updated 5 years ago
• secrary / findLoop
  findLoop - find possible encryption/decryption or compression/decompression code
  ☆26Updated 6 years ago
• hasherezade / paramkit
  A small library helping to parse commandline parameters (for C/C++)
  ☆57Updated last year
• hasherezade / flareon2019
  Flare-On solutions
  ☆36Updated 5 years ago
• JaanusKaapPublic / Slides
  Will try to put here slides from now on when I give a talk
  ☆24Updated 3 years ago
• aguinet / miasm-bootloader
  x86 bootloader emulation with Miasm (case of NotPetya)
  ☆42Updated 5 years ago
• Microwave89 / syscalltest
  PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls
  ☆38Updated 9 years ago
• RceNinja / Re-Scripts
  ☆34Updated 3 years ago
• Fmk0 / templates
  ☆36Updated 5 years ago
• hasherezade / beardisasm
  A wrapper for capstone for bearparser
  ☆14Updated 2 years ago
• MortenSchenk / tagWnd-Hardening-Bypass
  Bypass for the hardening against usage of tagWnd as a kernel read/write primitive
  ☆29Updated 8 years ago
• tyranid / DumpReparsePoints
  This is a simple tool to dump all the reparse points on an NTFS volume.
  ☆33Updated 4 years ago
• Jb05s / Exploit-Dev-C
  ☆22Updated 4 years ago
• d00rt / easy_way_nymaim
  An IDA Pro script for creating a clearer idb for nymaim malware
  ☆10Updated 7 years ago
• peterwintersmith / crystalaep
  Crystal Anti-Exploit Protection 2012
  ☆37Updated 4 years ago
• marcusbotacin / Anti.Analysis
  Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis
  ☆45Updated 7 years ago
• ulexec / ElfLocker
  PoC multi-layer protector for ELF32 x86 binaries
  ☆11Updated 3 years ago
• JKornev / cfgdump
  Windbg extension that allows you analyze Control Flow Guard map
  ☆35Updated 3 years ago