Alternatives and similar repositories for PigPEI:

Users that are interested in PigPEI are comparing it to the libraries listed below

• Azvanzed / vmw-logger-rs
  A VMWare logger using built-in backdoor.
  ☆27Updated 4 months ago
• backengineering / elderscroll
  PDB Rewriting Rust Library
  ☆23Updated 9 months ago
• 0vercl0k / kdmp-parser-rs
  A KISS Rust crate to parse Windows kernel crash-dumps created by Windows & its debugger.
  ☆32Updated last week
• r3bb1t / bin_lift
  Rust library for lifting raw binary data to LLVM IR
  ☆44Updated 4 months ago
• tandasat / CVE-2024-21305
  Report and exploit of CVE-2024-21305.
  ☆34Updated last year
• not-matthias / kernel-log-rs
  A minimalistic logger for Windows Kernel Drivers.
  ☆20Updated 11 months ago
• backengineering / vmhook
  A demonstration of hooking into the VMProtect-2 virtual machine
  ☆17Updated last year
• not-matthias / vmprotect-rs
  Rust bindings for VMProtect.
  ☆25Updated 11 months ago
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆31Updated last year
• DenuvoSoftwareSolutions / DVRT
  How Meltdown and Spectre haunt Anti-Cheat: DVRT details
  ☆21Updated 5 months ago
• CooperShield / rustache_injector
  A rust based DLL injection project
  ☆30Updated 2 years ago
• eset / wslink-vm-analyzer
  WslinkVMAnalyzer is a tool to facilitate analysis of code protected by a virtual machine featured in Wslink malware
  ☆45Updated 2 years ago
• delulu-hq / phnt-rs
  Rust bindings to the System Informer's (formerly known as Process Hacker) "phnt" native Windows headers
  ☆43Updated last month
• POPFD / cascade
  A thin introspection hypervisor framework that allows for low level resource manipulation.
  ☆13Updated last year
• DownWithUp / WarbirdExamples
  An example of how to use Microsoft Windows Warbird technology
  ☆27Updated last year
• worawit / malk
  Demonstrate calling a kernel function and handle process creation callback against HVCI
  ☆52Updated 2 years ago
• un4ckn0wl3z / PCIE-Detector
  Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures
  ☆32Updated 4 months ago
• alfarom256 / MinifilterResearch
  ☆16Updated 2 years ago
• OALabs / ZVM
  Disassembler for Zeus VM custom instruction set
  ☆27Updated last year
• tandasat / CVE-2022-25949
  A years-old exploit of a local EoP vulnerability in Kingsoft Antivirus KWatch Driver version 2009.3.17.77.
  ☆37Updated 2 years ago
• kukrimate / grr
  AMD SVM hypervisor rootkit proof of concept
  ☆44Updated last year
• benheise / ANGRYORCHARD
  A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.
  ☆26Updated 2 years ago
• hasherezade / flareon2023
  ☆25Updated 3 months ago
• shareef12 / driveranalyzer
  Binary Ninja plugin to perform automated analysis of Windows drivers
  ☆17Updated 5 years ago
• Signal-Labs / Hotpatching_PoC
  ☆20Updated last year
• tyranid / windows-memory-access-traps
  A few examples of how to trap virtual memory access on Windows.
  ☆26Updated last month
• novafacing / cargo-shellcode
  Cargo subcommand to build a crate into shellcode
  ☆24Updated 6 months ago
• zodiacon / VerifierDLL
  Example of building an application verifer DLL
  ☆44Updated 8 months ago
• airbus-cert / ttd2mdmp
  Extract data of TTD trace file to a minidump
  ☆28Updated last year
• Midi12 / whse
  WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API
  ☆22Updated 2 years ago