Alternatives and similar repositories for linux-pe

Users that are interested in linux-pe are comparing it to the libraries listed below

• can1357 / NtRays
  Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
  ☆599Updated 4 months ago
• JustasMasiulis / inline_syscall
  Inline syscalls made easy for windows on clang
  ☆706Updated 11 months ago
• anzelesnik / SyscallHook
  System call hook for Windows 10 20H1
  ☆493Updated 3 years ago
• MiroKaku / ucxxrt
  The Universal C++ RunTime library, supporting kernel-mode C++ exception-handler and STL.
  ☆402Updated 10 months ago
• MiroKaku / Musa.Veil
  Collection of undocumented Windows API declarations.
  ☆314Updated this week
• jxy-s / stlkrn
  C++ STL in the Windows Kernel with C++ Exception Support
  ☆412Updated last year
• HoShiMin / formatPE
  A bunch of parsers for PE and PDB formats in C++
  ☆246Updated last year
• vmcall / nt-mapper
  C++17 PE manualmapper
  ☆359Updated 3 years ago
• JustasMasiulis / nt_wrapper
  A wrapper library around native windows sytem APIs
  ☆433Updated 4 years ago
• JustasMasiulis / wow64pp
  A modern c++ implementation of windows heavens gate
  ☆222Updated 4 years ago
• vmcall / dxgkrnl_hook
  C++ graphics kernel subsystem hook
  ☆520Updated 4 years ago
• revsic / AntiDebugging
  AntiDebugging sample sources written in C++
  ☆340Updated 6 years ago
• zyantific / zasm
  x86-64 Assembler based on Zydis
  ☆359Updated 3 months ago
• btbd / smap
  DLL scatter manual mapper
  ☆751Updated 4 years ago
• JustasMasiulis / ida_bitfields
  IDA Pro plugin to make bitfield accesses easier to grep
  ☆237Updated 3 months ago
• tandasat / SimpleSvmHook
  SimpleSvmHook is a research purpose hypervisor for Windows on AMD processors.
  ☆396Updated 4 years ago
• changeofpace / Self-Remapping-Code
  This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemo…
  ☆597Updated 6 years ago
• crvvdev / MasterHide
  A x64 Windows Rootkit using SSDT or Hypervisor hook
  ☆536Updated 4 months ago
• HoShiMin / HookLib
  The functions interception library written on pure C and NativeAPI with UserMode and KernelMode support
  ☆745Updated last month
• adrianyy / kernelhook
  Windows inline hooking tool.
  ☆270Updated 6 years ago
• can1357 / HexSuite
  Header only wrapper around Hex-Rays API in C++20.
  ☆159Updated 5 months ago
• mike1k / HookHunter
  Analyze patches in a process
  ☆253Updated 3 years ago
• Cr4sh / KernelForge
  A library to develop kernel level Windows payloads for post HVCI era
  ☆406Updated 4 years ago
• thesecretclub / window_hijack
  Rendering on external windows via hijacking thread contexts
  ☆392Updated 4 years ago
• gh-nomad / nmd
  set of single-header libraries for C/C++. The code is far from finished but some parts are quite usable.
  ☆171Updated 3 years ago
• vmcall / owned_alignment
  Hooking kernel functions by abusing alignment
  ☆238Updated 4 years ago
• mike1k / perses
  X86 Mutation Engine with Portable Executable compatibility.
  ☆491Updated 3 years ago
• BadPlayer555 / KernelGDIDraw
  The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.
  ☆295Updated 5 years ago
• notpidgey / EagleVM
  Native code virtualizer for x64 binaries
  ☆483Updated 5 months ago
• wbenny / KSOCKET
  KSOCKET provides a very basic example how to make a network connections in the Windows Driver by using WSK
  ☆505Updated 2 years ago