Alternatives and similar repositories for windows-software-policy

Users that are interested in windows-software-policy are comparing it to the libraries listed below

• KiFilterFiberContext / microsoft-warbird
  Reimplementation of Microsoft's Warbird obuscator
  ☆150Updated last year
• ergrelet / themida-spotter-bn
  A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.
  ☆83Updated last year
• KiFilterFiberContext / warbird-obfuscator
  Integration of Microsoft Warbird with the MSVC compiler
  ☆114Updated 2 years ago
• GetRektBoy724 / warbird-research
  Find out how to bypass HVCI (or not). My own research on Microsoft Warbird (specifically in clipsp.sys)
  ☆68Updated last week
• tandasat / hvext
  The Windbg extensions to study Hyper-V on Intel and AMD processors.
  ☆167Updated last month
• Wack0 / SecureBootPolicyTools
  Take back control of Windows Code Integrity, no exploits or patching required! Requires that you control your own Platform Key (PK).
  ☆49Updated 3 years ago
• WitherOrNot / warbird-docs
  Documentation of Microsoft's Warbird obfuscation
  ☆52Updated last year
• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆156Updated last year
• dmaivel / ntoseye
  Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
  ☆96Updated 5 months ago
• gerhart01 / Hyper-V-Tools
  Different tools for Microsoft Hyper-V researching
  ☆61Updated 3 months ago
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆256Updated 3 years ago
• vmsplit / checkm8
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆83Updated 7 months ago
• AaLl86 / WindowsInternals
  Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book
  ☆113Updated last year
• charlesnathansmith / whatlicense
  WinLicense key extraction via Intel PIN
  ☆106Updated last year
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆94Updated last year
• rce-3 / xenith
  Research-focused hypervisor offering advanced tools for debugging, virtual machine introspection, and automation.
  ☆41Updated 2 weeks ago
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆85Updated 5 years ago
• Wack0 / DeltaDownloader
  Given delta compressed PE files, find download links for them on the Microsoft Symbol Server. No source PE file or VirusTotal access requ…
  ☆31Updated last year
• binsnake / KUBERA
  A x86_64 software emulator
  ☆154Updated 2 months ago
• ergot86 / hyperv_stuff
  Hyper-V related resources
  ☆31Updated last year
• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆153Updated last year
• thesecretclub / SandboxBootkit
  Bootkit for Windows Sandbox to disable DSE/PatchGuard.
  ☆305Updated last year
• icicle-emu / icicle-python
  Python bindings for the Icicle emulator.
  ☆40Updated last week
• SamuelTulach / unxorer
  Yet another IDA Pro/Home plugin for deobfuscating stack strings
  ☆97Updated 2 weeks ago
• m417z / x64dbg-symbol-tldr
  An x64dbg plugin which helps make sense of long C++ symbols
  ☆57Updated 2 years ago
• Signal-Labs / IOCTLDump
  ☆147Updated 2 years ago
• 3dnow / NtCreateLowBoxToken
  A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering
  ☆41Updated 4 months ago
• irql / nokd
  reverse engineering of the windows nt kernel debugger protocol & reimplementation.
  ☆29Updated last year
• m417z / x64dbg-xfg-marker
  An x64dbg plugin which marks XFG call signatures as data
  ☆77Updated 2 years ago
• d35ha / xLogger
  Simple windows API logger
  ☆109Updated 6 years ago