Alternatives and similar repositories for windows-software-policy

Users that are interested in windows-software-policy are comparing it to the libraries listed below

• KiFilterFiberContext / microsoft-warbird
  Reimplementation of Microsoft's Warbird obuscator
  ☆153Updated last year
• KiFilterFiberContext / warbird-obfuscator
  Integration of Microsoft Warbird with the MSVC compiler
  ☆116Updated 2 years ago
• Wack0 / SecureBootPolicyTools
  Take back control of Windows Code Integrity, no exploits or patching required! Requires that you control your own Platform Key (PK).
  ☆49Updated 3 years ago
• WitherOrNot / warbird-docs
  Documentation of Microsoft's Warbird obfuscation
  ☆55Updated last year
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆257Updated 3 years ago
• ergrelet / themida-spotter-bn
  A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.
  ☆88Updated last year
• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆158Updated last year
• tandasat / hvext
  The Windbg extensions to study Hyper-V on Intel and AMD processors.
  ☆168Updated 3 months ago
• GetRektBoy724 / warbird-research
  Find out how to bypass HVCI (or not). My own research on Microsoft Warbird (specifically in clipsp.sys)
  ☆80Updated 2 months ago
• dmaivel / ntoseye
  Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
  ☆106Updated last week
• m417z / x64dbg-symbol-tldr
  An x64dbg plugin which helps make sense of long C++ symbols
  ☆57Updated 2 years ago
• irql / nokd
  reverse engineering of the windows nt kernel debugger protocol & reimplementation.
  ☆35Updated last year
• SamuelTulach / PwnedBoot
  Using Windows' own bootloader as a shim to bypass Secure Boot
  ☆213Updated last year
• AaLl86 / WindowsInternals
  Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book
  ☆114Updated last year
• charlesnathansmith / whatlicense
  WinLicense key extraction via Intel PIN
  ☆107Updated last year
• gerhart01 / Hyper-V-Tools
  Different tools for Microsoft Hyper-V researching
  ☆63Updated last week
• m417z / x64dbg-xfg-marker
  An x64dbg plugin which marks XFG call signatures as data
  ☆78Updated 2 years ago
• vmsplit / checkm8
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆83Updated 9 months ago
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆95Updated last year
• diversenok / DiaSymbolView
  PDB file inspection tool
  ☆116Updated last month
• binsnake / KUBERA
  A x86_64 software emulator
  ☆159Updated 4 months ago
• d35ha / xLogger
  Simple windows API logger
  ☆109Updated 6 years ago
• 3dnow / NtCreateLowBoxToken
  A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering
  ☆41Updated 6 months ago
• thesecretclub / SandboxBootkit
  Bootkit for Windows Sandbox to disable DSE/PatchGuard.
  ☆314Updated last year
• SamuelTulach / winzentool
  Port of zentool to Windows
  ☆26Updated 9 months ago
• behnamshamshirsaz / CrackMaster
  x86/x64 Ring 0/-2 System Freezer/Debugger
  ☆119Updated 7 months ago
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆86Updated 5 years ago
• microsoft / pdblister
  Faster version of `symchk /om` for generating PDB manifests of offline machines
  ☆63Updated 3 months ago
• 0x1c1101 / blazing_asm
  Simple, fast and lightweight Header-Only C++ Assembler Library
  ☆127Updated 4 months ago
• mrexodia / driver_unpacking
  Ghetto user mode emulation of Windows kernel drivers.
  ☆152Updated last year