Alternatives and similar repositories for linux-pe

Users that are interested in linux-pe are comparing it to the libraries listed below

• can1357 / NtRays
  Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
  ☆603Updated 4 months ago
• anzelesnik / SyscallHook
  System call hook for Windows 10 20H1
  ☆493Updated 3 years ago
• JustasMasiulis / wow64pp
  A modern c++ implementation of windows heavens gate
  ☆224Updated 4 years ago
• JustasMasiulis / inline_syscall
  Inline syscalls made easy for windows on clang
  ☆709Updated last year
• jxy-s / stlkrn
  C++ STL in the Windows Kernel with C++ Exception Support
  ☆416Updated last year
• MiroKaku / Musa.Veil
  Collection of undocumented Windows API declarations.
  ☆316Updated 2 weeks ago
• notpidgey / EagleVM
  Native code virtualizer for x64 binaries
  ☆486Updated 6 months ago
• vmcall / nt-mapper
  C++17 PE manualmapper
  ☆360Updated 3 years ago
• MiroKaku / ucxxrt
  The Universal C++ RunTime library, supporting kernel-mode C++ exception-handler and STL.
  ☆402Updated 11 months ago
• crvvdev / MasterHide
  A x64 Windows Rootkit using SSDT or Hypervisor hook
  ☆540Updated 5 months ago
• adrianyy / kernelhook
  Windows inline hooking tool.
  ☆273Updated 6 years ago
• changeofpace / Self-Remapping-Code
  This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemo…
  ☆601Updated 6 years ago
• vmcall / dxgkrnl_hook
  C++ graphics kernel subsystem hook
  ☆523Updated 4 years ago
• d35ha / xObf
  Simple x86/x86_64 instruction level obfuscator based on a basic SBI engine
  ☆270Updated 2 years ago
• HoShiMin / formatPE
  A bunch of parsers for PE and PDB formats in C++
  ☆248Updated last year
• tandasat / SimpleSvmHook
  SimpleSvmHook is a research purpose hypervisor for Windows on AMD processors.
  ☆403Updated 4 years ago
• zyantific / zasm
  x86-64 Assembler based on Zydis
  ☆365Updated 3 months ago
• JustasMasiulis / nt_wrapper
  A wrapper library around native windows sytem APIs
  ☆435Updated 4 years ago
• BaumFX / cpp-anti-debug
  anti debugging library in c++.
  ☆560Updated last year
• btbd / umap
  UEFI bootkit for driver manual mapping
  ☆552Updated last year
• can1357 / NtLua
  Lua in kernel-mode because why not.
  ☆329Updated 3 years ago
• waryas / KACE
  Emulate Drivers in RING3 with self context mapping or unicorn
  ☆341Updated 2 years ago
• mike1k / HookHunter
  Analyze patches in a process
  ☆253Updated 3 years ago
• kkent030315 / anycall
  x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration
  ☆327Updated 2 years ago
• vmcall / owned_alignment
  Hooking kernel functions by abusing alignment
  ☆243Updated 4 years ago
• Chemiculs / qengine
  C++ 17 or higher control flow obfuscation library for windows binaries
  ☆362Updated last month
• JustasMasiulis / ida_bitfields
  IDA Pro plugin to make bitfield accesses easier to grep
  ☆239Updated 4 months ago
• backengineering / llvm-msvc
  LLVM fork with explicit compatibility with MSVC 2022 features.
  ☆307Updated 2 months ago
• thesecretclub / window_hijack
  Rendering on external windows via hijacking thread contexts
  ☆393Updated 4 years ago
• hfiref0x / NtCall64
  Windows NT x64 syscall fuzzer
  ☆607Updated last year