Alternatives and similar repositories for awesome-virtualization

Users that are interested in awesome-virtualization are comparing it to the libraries listed below

• killswitch-GUI / IsDebuggerPresent
  Debugger checks in 3 ways
  ☆19Updated 7 years ago
• mgeeky / prc_xchk
  User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.
  ☆19Updated 9 years ago
• zodiacon / AccessMask
  ☆20Updated 5 years ago
• zodiacon / ObjDir
  Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.
  ☆20Updated last year
• 0vercl0k / KEPaboo
  Neutralize KEPServerEX anti-debugging techniques
  ☆31Updated 2 years ago
• JKornev / cfgdump
  Windbg extension that allows you analyze Control Flow Guard map
  ☆35Updated 3 years ago
• PELock / starter
  A small utility to run raw code chunks in the executable memory area.
  ☆14Updated 10 years ago
• zodiacon / ErrorLookup
  Simple error lookup for Win32 and NTSTATUS errors
  ☆19Updated 6 years ago
• tpn / windows-nt-file-system-internals-book
  Source code on the 1.44MB 3.5 floppy accompanying the Windows NT File System Internals book.
  ☆16Updated 5 years ago
• therealdreg / Win.Cerdalux
  WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs
  ☆18Updated last year
• h4xu3lyn / NTLib
  Headers for linking your software with ntdll.dll
  ☆15Updated 4 years ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year
• JKornev / NTlib
  Static library and headers for linking your software with ntdll.dll
  ☆32Updated 5 years ago
• hasherezade / pe_utils
  A set of small utilities, helpers for PIN tracers
  ☆33Updated last year
• pfussell / pivotal
  A MITM proxy server for reflective DLL injection through WinINet
  ☆15Updated 7 years ago
• securesean / Shim-Process-Scanner
  Windows x64 Process Scanner to detect application compatability shims
  ☆37Updated 6 years ago
• hasherezade / beardisasm
  A wrapper for capstone for bearparser
  ☆14Updated 2 years ago
• Fyyre / directntapi
  DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10
  ☆52Updated last year
• waleedassar / SyscallNumberFinder
  ☆33Updated 3 years ago
• pstolarz / asprext
  ASProtect reverse engineering & analysis WinDbg extension
  ☆22Updated 4 years ago
• gabriellandau / CISpotter
  Code Integrity Violation Spotter
  ☆16Updated 11 months ago
• thalium / WinDbgFastObj
  ☆21Updated 3 years ago
• rbmm / LIB
  ☆7Updated last month
• odzhan / dewifi
  Decrypt Wireless Passwords On Windows
  ☆14Updated 4 years ago
• d35ha / RunPE
  An example of PE hollowing injection technique
  ☆23Updated 5 years ago
• OSRDrivers / deleteex
  Demonstrate the new FileDispositionInfoEx behavior
  ☆14Updated 7 years ago
• NtRaiseHardError / NoREpls
  NoREpls - Application designed for the purposes of reverse engineering.
  ☆11Updated 6 years ago
• d35ha / xPE
  Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling
  ☆33Updated 5 years ago
• d35ha / DumpPE
  Dump mapped PE files from memory to the disk
  ☆20Updated 5 years ago
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆34Updated 8 years ago