Alternatives and similar repositories for windows-software-policy

Users that are interested in windows-software-policy are comparing it to the libraries listed below

• KiFilterFiberContext / microsoft-warbird
  Reimplementation of Microsoft's Warbird obuscator
  ☆177Updated last year
• WitherOrNot / warbird-docs
  Documentation of Microsoft's Warbird obfuscation
  ☆68Updated last year
• KiFilterFiberContext / warbird-obfuscator
  Integration of Microsoft Warbird with the MSVC compiler
  ☆127Updated 2 years ago
• tandasat / hvext
  The Windbg extensions to study Hyper-V on Intel and AMD processors.
  ☆169Updated 5 months ago
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆261Updated 3 years ago
• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆162Updated last year
• dmaivel / ntoseye
  Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
  ☆122Updated this week
• Wack0 / SecureBootPolicyTools
  Take back control of Windows Code Integrity, no exploits or patching required! Requires that you control your own Platform Key (PK).
  ☆50Updated 3 years ago
• vmsplit / checkm8
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆82Updated 10 months ago
• ergrelet / themida-spotter-bn
  A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.
  ☆90Updated last year
• gerhart01 / Hyper-V-Tools
  Different tools for Microsoft Hyper-V researching
  ☆64Updated last month
• GetRektBoy724 / warbird-research
  Find out how to bypass HVCI (or not). My own research on Microsoft Warbird (specifically in clipsp.sys)
  ☆89Updated 3 months ago
• SamuelTulach / PwnedBoot
  Using Windows' own bootloader as a shim to bypass Secure Boot
  ☆215Updated last year
• m417z / x64dbg-symbol-tldr
  An x64dbg plugin which helps make sense of long C++ symbols
  ☆59Updated 2 years ago
• irql / nokd
  reverse engineering of the windows nt kernel debugger protocol & reimplementation.
  ☆36Updated last year
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆95Updated last year
• charlesnathansmith / whatlicense
  WinLicense key extraction via Intel PIN
  ☆107Updated last year
• AaLl86 / WindowsInternals
  Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book
  ☆115Updated last year
• binsnake / KUBERA
  A x86_64 software emulator
  ☆162Updated 5 months ago
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆88Updated 5 years ago
• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆161Updated 2 years ago
• codedefender-io / sigbreaker
  All LLVM binaries scrambled with SigBreaker and used to test against llvm-lit
  ☆25Updated 9 months ago
• rce-3 / xenith
  Research-focused hypervisor offering advanced tools for debugging, virtual machine introspection, and automation.
  ☆42Updated 2 months ago
• Wack0 / DeltaDownloader
  Given delta compressed PE files, find download links for them on the Microsoft Symbol Server. No source PE file or VirusTotal access requ…
  ☆44Updated last year
• can1357 / IdaThemer
  🎨 Seamlessly convert your favorite Visual Studio Code themes to IDA Pro themes.
  ☆123Updated last year
• thesecretclub / SandboxBootkit
  Bootkit for Windows Sandbox to disable DSE/PatchGuard.
  ☆317Updated last year
• carlos-al / user-kernel-syscall-hook
  ☆93Updated last year
• Idov31 / NovaHypervisor
  NovaHypervisor is a defensive x64 Intel host based hypervisor. The goal of this project is to protect against kernel based attacks (eithe…
  ☆245Updated 4 months ago
• Vector35 / scc
  ☆160Updated last month
• Fyyre / DrvMon
  Advanced driver monitoring utility.
  ☆218Updated 3 years ago