Alternatives and similar repositories for PE-Runtime-Data-Structures

Users that are interested in PE-Runtime-Data-Structures are comparing it to the libraries listed below

• dsnezhkov / exclave
  ☆16Updated 4 years ago
• hasherezade / tag_converter
  ☆23Updated 4 years ago
• hotnops / RemoteDebugView
  A DLL that serves OutputDebugString content over a TCP connection
  ☆35Updated 4 years ago
• hasherezade / paramkit
  A small library helping to parse commandline parameters (for C/C++)
  ☆58Updated 8 months ago
• Fmk0 / templates
  ☆36Updated 6 years ago
• perturbed-platypus / LinooxMalware
  ☆28Updated 6 years ago
• msuiche / smbaloo
  ☆48Updated 5 years ago
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆39Updated 4 years ago
• arieljt / VTCodeBlocks-Maltego
  Maltego transforms to pivot between PE files based on their VirusTotal codeblocks
  ☆18Updated 4 years ago
• mauronz / binja-emotet
  ☆19Updated 5 years ago
• peterwintersmith / crystalaep
  Crystal Anti-Exploit Protection 2012
  ☆37Updated 5 years ago
• hasherezade / pe_utils
  A set of small utilities, helpers for PIN tracers
  ☆35Updated 3 months ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆33Updated 6 years ago
• re-fox / documentation
  ☆13Updated 5 years ago
• shamrockhoax / mazedecoder
  ☆28Updated 5 years ago
• williballenthin / viv-utils
  Utilities for working with vivisect
  ☆26Updated 4 months ago
• Truneski / WindowsKernelProgramming-Exercises
  ☆51Updated 5 years ago
• 86hh / POC-viruses
  POC viruses I have created to demo some ideas
  ☆59Updated 5 years ago
• tyranid / DumpReparsePoints
  This is a simple tool to dump all the reparse points on an NTFS volume.
  ☆33Updated 5 years ago
• silascutler / DetuxNG
  The Multiplatform Linux Sandbox
  ☆16Updated 2 years ago
• deroko / SPPLUAObjectUacBypass
  ☆46Updated 7 years ago
• securesean / Shim-Process-Scanner
  Windows x64 Process Scanner to detect application compatability shims
  ☆37Updated 7 years ago
• tbarabosch / apihash_to_yara
  Generates YARA rules to detect malware using API hashing
  ☆17Updated 4 years ago
• airbus-cert / etwbreaker
  An IDA plugin to deal with Event Tracing for Windows (ETW)
  ☆55Updated 3 years ago
• OsandaMalith / PESecInfo
  A simple tool to view important DLL Characteristics and change DEP and ASLR
  ☆45Updated 7 years ago
• airbus-cert / ttd2mdmp
  Extract data of TTD trace file to a minidump
  ☆31Updated 2 years ago
• nccgroup / WindowsMemPageDelta
  A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection
  ☆32Updated 5 years ago
• malware-kitten / shellcode_hashes
  A collection of shellcode hashes
  ☆17Updated 7 years ago
• Dump-GUY / Python3---Binary-Data-Manipulation
  Python 3 - Manipulation and conversation with different data type (Bytes operations)
  ☆27Updated 3 years ago
• perturbed-platypus / UEFIWriteCPP
  ☆12Updated 6 years ago