can1357 / linux-peLinks
COFF and Portable Executable format described using standard C++ with no dependencies.
☆316Updated last month
Alternatives and similar repositories for linux-pe
Users that are interested in linux-pe are comparing it to the libraries listed below
Sorting:
- Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.☆603Updated 4 months ago
- System call hook for Windows 10 20H1☆493Updated 3 years ago
- A modern c++ implementation of windows heavens gate☆224Updated 4 years ago
- Inline syscalls made easy for windows on clang☆709Updated last year
- C++ STL in the Windows Kernel with C++ Exception Support☆416Updated last year
- Collection of undocumented Windows API declarations.☆316Updated 2 weeks ago
- Native code virtualizer for x64 binaries☆486Updated 6 months ago
- C++17 PE manualmapper☆360Updated 3 years ago
- The Universal C++ RunTime library, supporting kernel-mode C++ exception-handler and STL.☆402Updated 11 months ago
- A x64 Windows Rootkit using SSDT or Hypervisor hook☆540Updated 5 months ago
- Windows inline hooking tool.☆273Updated 6 years ago
- This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemo…☆601Updated 6 years ago
- C++ graphics kernel subsystem hook☆523Updated 4 years ago
- Simple x86/x86_64 instruction level obfuscator based on a basic SBI engine☆270Updated 2 years ago
- A bunch of parsers for PE and PDB formats in C++☆248Updated last year
- SimpleSvmHook is a research purpose hypervisor for Windows on AMD processors.☆403Updated 4 years ago
- x86-64 Assembler based on Zydis☆365Updated 3 months ago
- A wrapper library around native windows sytem APIs☆435Updated 4 years ago
- anti debugging library in c++.☆560Updated last year
- UEFI bootkit for driver manual mapping☆552Updated last year
- Lua in kernel-mode because why not.☆329Updated 3 years ago
- Emulate Drivers in RING3 with self context mapping or unicorn☆341Updated 2 years ago
- Analyze patches in a process☆253Updated 3 years ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆327Updated 2 years ago
- Hooking kernel functions by abusing alignment☆243Updated 4 years ago
- C++ 17 or higher control flow obfuscation library for windows binaries☆362Updated last month
- IDA Pro plugin to make bitfield accesses easier to grep☆239Updated 4 months ago
- LLVM fork with explicit compatibility with MSVC 2022 features.☆307Updated 2 months ago
- Rendering on external windows via hijacking thread contexts☆393Updated 4 years ago
- Windows NT x64 syscall fuzzer☆607Updated last year