Alternatives and similar repositories for exe-analyzer:

Users that are interested in exe-analyzer are comparing it to the libraries listed below

• NoHeart2019 / KasR3Hook
  使用 Intel 虚拟化特性实现应用层HOOK
  ☆60Updated last month
• smallzhong / KernelHook
  一个用来做windows内核hook的框架
  ☆84Updated 11 months ago
• zzhouhe / VM_Analyze
  ☆82Updated 4 years ago
• WINGS2709 / 360Safe
  大数字驱动逆向代码
  ☆71Updated last year
• ddddhm1234 / TTDEngine
  ☆26Updated last year
• AimiP02 / BronyaObfus
  整合Pluto-Obfuscator和goron部分混淆，移植到LLVM-16.0.x，使用NewPassManager
  ☆121Updated last year
• Whitebird0 / Windows-kernel-learning-notes
  ☆18Updated 2 years ago
• DATA-GaMi / WindowsKernelBook
  《Windows 内核安全编程技术实践》 系列丛书，探索 Anti RootKit 反内核工具核心原理与技术实现细节。
  ☆50Updated 2 years ago
• A-Normal-User / Pretend_HideVirtualMemory
  利用物理内存映射，实现虚拟内存的伪隐藏
  ☆84Updated 2 years ago
• wwh1004 / ollvm-16
  Obfuscator-LLVM for LLVM 16.x branch
  ☆203Updated last year
• mizukiyyds / asm_obfuscator
  非编译时代码混淆，包括代码块拆分、代码乱序、常量加密、代码变异、抹除jcc、局部混淆等，主要提供框架以及思路
  ☆30Updated 2 years ago
• DragonQuestHero / Medusa
  Radical Windows ARK
  ☆228Updated last week
• Hipepper / anti_all_in_one
  尽量汇聚反调试资源和利用对抗技术
  ☆176Updated 10 months ago
• liangfei44 / VmWareThrough
  ☆197Updated 2 years ago
• zhutingxf / InfinityHookPro
  InfinityHook 支持Win7 到 Win11 最新版本，虚拟机环境及物理机环境
  ☆51Updated 5 months ago
• FiYHer / driver_callback_bypass_1909
  研究和移除各种内核回调,在anti anti cheat的路上越走越远
  ☆173Updated 2 years ago
• Hipepper / antiVM
  Ida pro plugin. The antiVM aims to quickly identify anti-virtual machine and anti-sandbox behavior. This can speed up malware analysis.
  ☆39Updated 2 years ago
• cbwang505 / unicorn-whpx
  跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式…
  ☆66Updated last year
• killvxk / llvm-msvc-ex
  Forked LLVM focused on MSVC Compatibility. This version is designed for windows users
  ☆88Updated last month
• DNLINYJ / DetectVMP3
  A POC to detect the exist of VMProtect 3 protection by search feature watermark.
  ☆77Updated last year
• lstaroth / AntiXorstr
  IDA Pro plugin AntiXorstr
  ☆113Updated 3 weeks ago
• dulong-lab / video-virtual-memory-materials
  《关于编写 x64 Windows 10 驱动以了解虚拟内存这件事》系列视频附带的代码和材料
  ☆102Updated 2 years ago
• IcEy-999 / Kernel-Special-APC-ReadProcessMemory
  Example of reading process memory through kernel special APC
  ☆103Updated last year
• bluesadi / Heavens-Gate
  Heaven's Gate implementation in C for constructing x64 Win32 API call in x86 WoW64 processes.
  ☆70Updated 3 years ago
• HadesW / mhy_exp
  Mhy Exp (exploit signed driver)
  ☆140Updated 2 years ago
• DragonQuestHero / WindowsKernelPrivateSymbolsDump
  Win7内核私有符号结构转储
  ☆68Updated 3 years ago
• JayRE114514 / UserComment
  An IDA pro plugin to display user-added comments in disassembly and pseudocode views.
  ☆82Updated last year
• Oxygen1a1 / DrvMon
  a monitoring windows driver calls kernel api tools
  ☆103Updated 8 months ago
• lainswork / shellcode-factory
  shellcode 生成框架
  ☆261Updated 2 years ago
• yodamaster / xspy
  If you are cracking a mfc program, you may find this useful.
  ☆67Updated 11 years ago