avast / pe_tools

Related projects ⓘ

Alternatives and complementary repositories for pe_tools

• hasherezade / libpeconv_tpl
  A ready-made template for a project based on libpeconv.
  ☆41Updated 3 weeks ago
• ytk2128 / pe32-password
  Sample project that encrypts windows 32-bit executables with password
  ☆52Updated 2 years ago
• Microwave89 / createuserprocess
  Three Tiny Examples of Directly Using Vista's NtCreateUserProcess
  ☆85Updated 9 years ago
• p0dalirius / pdbdownload
  A Python script to download PDB files associated with a Portable Executable (PE)
  ☆115Updated 3 months ago
• mgeeky / PE-library
  Lightweight Portable Executable parsing library and a demo peParser application.
  ☆72Updated last year
• hasherezade / pin_n_sieve
  An experimental dynamic malware unpacker based on Intel Pin and PE-sieve
  ☆57Updated 2 months ago
• hMihaiDavid / addscn
  Add an empty section to a PE file
  ☆49Updated 7 years ago
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆74Updated 4 years ago
• jbaines-r7 / dellicious
  Enabled / Disable LSA Protection via BYOVD
  ☆62Updated 2 years ago
• BehroozAbbassi / sdkffi
  A code parser for C-Style header files that lets you to parse function's prototypes and data types used in their parameters.
  ☆93Updated 2 years ago
• magnusstubman / dll-exports
  Collection of DLL function export forwards for DLL export function proxying
  ☆89Updated last year
• 0vercl0k / sic
  Enumerate user mode shared memory mappings on Windows.
  ☆114Updated 3 years ago
• 0vercl0k / inject
  Yet another Windows DLL injector.
  ☆38Updated 2 years ago
• andrew-boyarshin / LoaderWatch
  Windows 10 PE image loader (LDR) NTDLL component toolbox
  ☆41Updated 5 years ago
• libyal / libmdmp
  Library and tools to access the Windows Minidump (MDMP) format
  ☆38Updated 3 months ago
• jonaslyk / temp
  ☆65Updated last year
• VoidSec / ioctlpus
  IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).
  ☆84Updated 2 years ago
• xpn / RpcEnum
  An command-line RPC method enumerator, born out of RPCView's awesomeness
  ☆98Updated 5 years ago
• hasherezade / pe_utils
  A set of small utilities, helpers for PIN tracers
  ☆31Updated last year
• hidd3ncod3s / WindowsAPIhash
  Windows API Hashes used in the malwares
  ☆38Updated 9 years ago
• jackullrich / TRunPE
  A modified RunPE (process hollowing) technique avoiding the usage of SetThreadContext by appending a TLS section which calls the original…
  ☆92Updated 5 years ago
• 0mWindyBug / RansomGuard
  anti-ransomware file-system filter
  ☆46Updated 2 months ago
• jackullrich / Windows-API-Fuzzer
  Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.
  ☆94Updated 4 years ago
• mathisvickie / CVE-2021-21551
  arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system
  ☆53Updated 2 years ago
• 0xMegaByte / COM-Explained
  ☆27Updated 2 years ago
• jackullrich / memfuck
  A PoC designed to bypass all usermode hooks in a WoW64 environment.
  ☆148Updated 4 years ago
• repnz / windows-imports-searcher
  Support Windows OS Reversing by searching easily for references to functions across many DLLs
  ☆33Updated 2 years ago
• hasherezade / paramkit
  A small library helping to parse commandline parameters (for C/C++)
  ☆53Updated last year
• je5442804 / CreateProcessInternalW-Full
  Reimplement CreateProcessInternalW via Windows 10 20H1+/Windows 11 Base on NtCreateUserProcess-Post
  ☆47Updated 2 months ago