Alternatives and similar repositories for windows-desktop

Users that are interested in windows-desktop are comparing it to the libraries listed below

• repnz / autoit-analysis
  AutoIt Analysis Library: Parser & Emulator For Malware Researchers
  ☆21Updated 6 years ago
• DissectMalware / xlrd2
  xlrd2 is a variant of xlrd that is actively maintained
  ☆23Updated last year
• hasherezade / tag_converter
  ☆23Updated 4 years ago
• Fleex255 / CustomShim
  Example/starter code for custom Windows application compatibility shims
  ☆34Updated 4 years ago
• connormcgarr / Presentations
  ☆29Updated last month
• own2pwn / r0ak
  r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
  ☆28Updated 7 years ago
• deroko / SPPLUAObjectUacBypass
  ☆45Updated 7 years ago
• securesean / Shim-Process-Scanner
  Windows x64 Process Scanner to detect application compatability shims
  ☆37Updated 6 years ago
• Harvester57 / CodeIntegrity-DriverBlocklist
  ☆20Updated 4 months ago
• nccgroup / WindowsMemPageDelta
  A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection
  ☆32Updated 5 years ago
• Fmk0 / templates
  ☆36Updated 5 years ago
• nccgroup / WindowsPatchDetector
  Experimental Windows .text section Patch Detector
  ☆22Updated 10 years ago
• olliencc / WindowsPatchDetector
  Experimental: Windows .text section compare - disk versus memory
  ☆15Updated 10 years ago
• peterwintersmith / crystalaep
  Crystal Anti-Exploit Protection 2012
  ☆37Updated 5 years ago
• nccgroup / WindowsJobLock
  Windows Process Lockdown Tool using Job Objects
  ☆70Updated 11 years ago
• deroko / activationcontexthook
  ☆34Updated 8 years ago
• airbus-cert / etwbreaker
  An IDA plugin to deal with Event Tracing for Windows (ETW)
  ☆55Updated 3 years ago
• tyranid / DumpReparsePoints
  This is a simple tool to dump all the reparse points on an NTFS volume.
  ☆33Updated 5 years ago
• mrexodia / YaraGen
  Plugin for x64dbg to generate Yara rules from function basic blocks.
  ☆37Updated 8 years ago
• SouhailHammou / Exploits
  Exploits I've authored
  ☆60Updated 6 years ago
• packing-box / bintropy
  Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes
  ☆47Updated 10 months ago
• zodiacon / Blog
  Blog posts
  ☆30Updated 5 years ago
• ycscaly / Privilege-Escalation-Framework
  Privilege Escilation training project, with an emphasis on the distinction between vulnerability research & it's exposure and exploitatio…
  ☆35Updated 8 years ago
• intezer / analyze-community-ghidra-plugin
  Ghidra plugin for https://analyze.intezer.com
  ☆72Updated 2 years ago
• hasherezade / paramkit
  A small library helping to parse commandline parameters (for C/C++)
  ☆58Updated 4 months ago
• hasherezade / pin_n_sieve
  An experimental dynamic malware unpacker based on Intel Pin and PE-sieve
  ☆62Updated last year
• Dump-GUY / CAPA_JsonConver
  Converts exported results of CAPA tool from .json format to another formats supporting by different tools.
  ☆22Updated 3 years ago
• Dump-GUY / Python3---Binary-Data-Manipulation
  Python 3 - Manipulation and conversation with different data type (Bytes operations)
  ☆27Updated 3 years ago
• c3rb3ru5d3d53c / karton-unpacker
  A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.
  ☆58Updated 4 years ago
• mandiant / win10_auto
  ☆24Updated 6 years ago