COFF and Portable Executable format described using standard C++ with no dependencies.
☆339Apr 24, 2025Updated 10 months ago
Alternatives and similar repositories for linux-pe
Users that are interested in linux-pe are comparing it to the libraries listed below
Sorting:
- Inline syscalls made easy for windows on clang☆736Jun 21, 2024Updated last year
- x86-64 Assembler based on Zydis☆408Feb 22, 2026Updated last week
- A portable header only library extending the C++20 STL.☆96Feb 23, 2026Updated last week
- Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.☆657Jan 28, 2025Updated last year
- Virtual-machine Translation Intermediate Language☆1,462Nov 5, 2023Updated 2 years ago
- Header only wrapper around Hex-Rays API in C++20.☆168Dec 25, 2024Updated last year
- library for importing functions from dlls in a hidden, reverse engineer unfriendly way☆1,900Aug 3, 2023Updated 2 years ago
- A VMP to VTIL lifter.☆445May 20, 2021Updated 4 years ago
- Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.☆902Nov 21, 2019Updated 6 years ago
- Native code virtualizer for x64 binaries☆517Dec 20, 2024Updated last year
- Hook system calls on Windows by using Kaspersky's hypervisor☆1,278Feb 14, 2026Updated 2 weeks ago
- KSOCKET provides a very basic example how to make a network connections in the Windows Driver by using WSK☆541Sep 2, 2022Updated 3 years ago
- A modern c++ implementation of windows heavens gate☆245Sep 19, 2020Updated 5 years ago
- DLL scatter manual mapper☆811Apr 10, 2021Updated 4 years ago
- The Universal C++ RunTime library, supporting kernel-mode C++ exception-handler and STL.☆407Jul 12, 2024Updated last year
- VM devirtualization PoC based on AsmJit and llvm☆123Sep 14, 2021Updated 4 years ago
- A static devirtualizer for VMProtect x64 3.x. powered by VTIL.☆2,083Aug 8, 2021Updated 4 years ago
- UEFI bootkit for driver manual mapping☆586Jan 1, 2024Updated 2 years ago
- heavily vectorized c++17 compile time string encryption.☆1,409Nov 19, 2021Updated 4 years ago
- Modern build system based on CMake and TOML.☆608Feb 14, 2026Updated 2 weeks ago
- A wrapper library around native windows sytem APIs☆448Feb 2, 2021Updated 5 years ago
- Windows kernel hacking framework, driver template, hypervisor and API written on C++☆1,802Nov 12, 2023Updated 2 years ago
- C++ Exceptions in Windows Drivers☆221Dec 21, 2020Updated 5 years ago
- x86 PE Mutator☆233Dec 24, 2022Updated 3 years ago
- Lua in kernel-mode because why not.☆367Dec 3, 2021Updated 4 years ago
- A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl☆1,330Oct 31, 2025Updated 4 months ago
- ☆423Jan 1, 2025Updated last year
- A native hypervisor designed for the Windows operating system☆125Mar 6, 2021Updated 4 years ago
- PE (and elf now!) bin2bin obfuscator☆820Oct 11, 2025Updated 4 months ago
- Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.☆915Dec 29, 2025Updated 2 months ago
- Deobfuscation via optimization with usage of LLVM IR and parsing assembly.☆766Sep 29, 2025Updated 5 months ago
- Kernel driver for detecting Intel VT-x hypervisors.☆197Jul 11, 2023Updated 2 years ago
- A x64 Windows Rootkit using SSDT or Hypervisor hook☆561Jan 4, 2025Updated last year
- Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!☆409Apr 19, 2025Updated 10 months ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆388Jul 6, 2022Updated 3 years ago
- A simple x86_64 AMD-v hypervisor type-2 Programmed with C++, with soon to be added syscall hooks. [W.I.P]☆104Aug 3, 2023Updated 2 years ago
- The functions interception library written on pure C and NativeAPI with UserMode and KernelMode support☆762Apr 24, 2025Updated 10 months ago
- Generate a PDB file given the old PDB file and an address mapping☆52Aug 3, 2025Updated 6 months ago
- The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.☆345Apr 27, 2020Updated 5 years ago