Alternatives and similar repositories for windows-desktop

Users that are interested in windows-desktop are comparing it to the libraries listed below

• securesean / Shim-Process-Scanner
  Windows x64 Process Scanner to detect application compatability shims
  ☆37Updated 6 years ago
• connormcgarr / Presentations
  ☆28Updated 9 months ago
• Fleex255 / CustomShim
  Example/starter code for custom Windows application compatibility shims
  ☆35Updated 4 years ago
• deroko / SPPLUAObjectUacBypass
  ☆45Updated 7 years ago
• own2pwn / r0ak
  r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
  ☆27Updated 7 years ago
• nccgroup / WindowsMemPageDelta
  A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection
  ☆31Updated 4 years ago
• zodiacon / Blog
  Blog posts
  ☆30Updated 4 years ago
• ycscaly / Privilege-Escalation-Framework
  Privilege Escilation training project, with an emphasis on the distinction between vulnerability research & it's exposure and exploitatio…
  ☆35Updated 8 years ago
• mandiant / win10_auto
  ☆24Updated 5 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 7 years ago
• ewhitehats / kovterTools
  ☆35Updated 6 years ago
• glinares / CSCGuard
  Protects and logs suspicious and malicious usage of .NET CSC.exe and Runtime C# Compilation
  ☆25Updated 7 years ago
• tyranid / setsidmapping
  Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.
  ☆23Updated 4 years ago
• Fmk0 / templates
  ☆36Updated 5 years ago
• nccgroup / WindowsJobLock
  Windows Process Lockdown Tool using Job Objects
  ☆69Updated 11 years ago
• deroko / activationcontexthook
  ☆34Updated 7 years ago
• libyal / libfwevt
  Library for Windows XML Event Log (EVTX) data types
  ☆18Updated 10 months ago
• stolenbytes / apcforthewin
  ☆16Updated 7 years ago
• repnz / autoit-analysis
  AutoIt Analysis Library: Parser & Emulator For Malware Researchers
  ☆21Updated 6 years ago
• airbus-cert / etwbreaker
  An IDA plugin to deal with Event Tracing for Windows (ETW)
  ☆55Updated 3 years ago
• nccgroup / WindowsPatchDetector
  Experimental Windows .text section Patch Detector
  ☆21Updated 10 years ago
• WiredPulse / Invoke-GhostLog
  Removal of certain event logs within a Windows OS
  ☆8Updated 5 years ago
• killswitch-GUI / IsDebuggerPresent
  Debugger checks in 3 ways
  ☆19Updated 7 years ago
• whiteHat001 / MIcrosoft-Word-Use-After-Free
  ☆17Updated 5 years ago
• peterwintersmith / crystalaep
  Crystal Anti-Exploit Protection 2012
  ☆37Updated 5 years ago
• sevagas / weaponize_process_injection_windows_SIGSEGv2_2019
  Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog
  ☆13Updated 5 years ago
• hasherezade / paramkit
  A small library helping to parse commandline parameters (for C/C++)
  ☆57Updated 2 months ago
• hotnops / COM_Mapper
  A tool to create COM class/interface relationships in neo4j
  ☆50Updated 2 years ago
• hatRiot / DelayLoadInject
  Code injection via delay load libraries
  ☆35Updated 7 years ago
• zodiacon / NativeApps
  Demos and presentation from SECArmy Village Grayhat 2020
  ☆38Updated 2 years ago