Alternatives and similar repositories for physmem

Users that are interested in physmem are comparing it to the libraries listed below

• mrexodia / EfiCMake
  CMake template for a basic EFI application/bootkit. This library is header-only, there is no EDK2 runtime!).
  ☆79Updated 3 years ago
• xsh3llsh0ck / Calamity
  Example of using Windows Platform Binary Table (WPBT)
  ☆26Updated 2 years ago
• charlesnathansmith / whatlicense
  WinLicense key extraction via Intel PIN
  ☆104Updated last year
• lunar-rf / cdl86
  Tiny C x86_64 function detouring library.
  ☆26Updated 2 weeks ago
• MiroKaku / Musa.Core
  Use ntdll/ntoskrnl to implement Kernel32, Advapi32 and other APIs. It includes user-mode and kernel-mode.
  ☆87Updated last month
• enginelesscc / classinformer-ida-90
  Class Informer updated for 32bit targets in 64bit IDA 8.2+/9.0/9.1
  ☆63Updated 5 months ago
• SHA-MRIZ / DisplayMiniportHooking
  ☆50Updated 4 years ago
• HyperDbg / RedDbg
  Hypervisor-based debugger for AMD processors
  ☆59Updated last year
• Hxnter999 / vmm
  Simple and lightweight hypervisor for AMD processors
  ☆35Updated 9 months ago
• zodiacon / DbgPrint
  Debug Print viewer (user and kernel)
  ☆68Updated last year
• KiFilterFiberContext / windows-software-policy
  Research on obfuscated licensing APIs / CLIP service in the Windows kernel
  ☆122Updated 3 years ago
• Flawww / WoW64Injection
  Proof of concept for injecting a 64-bit DLL into a 32-bit application
  ☆35Updated 2 years ago
• utoni / mingw-w64-dpp
  "Mingw64 Driver Plus Plus": Mingw64, C++, DDK and (EA)STL made easy!
  ☆41Updated last month
• KNSoft / KNSoft.SlimDetours
  An improved Detours.
  ☆78Updated last week
• x0reaxeax / rwlazer64
  Win64 UEFI Driver-based tool for unrestricted memory R/W
  ☆29Updated 3 years ago
• ranni0225 / WRK
  Windows Research Kernel
  ☆34Updated this week
• shsh999 / WPP
  A pure C++17 implementation of WPP software tracing
  ☆19Updated 4 years ago
• Fyyre / ntdll
  ntdll.h - compatible with MSVC 6.0, Intel C++ Compiler and MinGW. Serves as a complete replacement for Windows.h
  ☆146Updated 6 years ago
• OSRDrivers / Inverted
  Example WDF/KMDF driver and test app demonstrating the "inverted call model"
  ☆36Updated 5 years ago
• Ahora57 / Unabomber
  Improved VMP Idea(detect anti-anti-debug tools by bug)
  ☆46Updated 2 years ago
• sonyps5201314 / wow64ext
  Another wow64ext to try to be compatible with WOW64 for all architectures.
  ☆94Updated last month
• ZehMatt / zyemu
  x86-64 user mode emulation using Zydis
  ☆67Updated 2 weeks ago
• HoShiMin / Arch
  A bunch of architectural headers for i386 and AMD64
  ☆41Updated last year
• GetRektBoy724 / KPDB
  Windows PDB parser for kernel-mode environment.
  ☆98Updated 3 months ago
• ekknod / KiSystemStartupMeme
  Custom KiSystemStartup, can be used to modificate kernel before boot.
  ☆52Updated 3 years ago
• mibho / x64dbg-vmp-trace
  unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…
  ☆62Updated last year
• yubie-re / vmp-virtualprotect-bypass
  Disables virtualprotect checks/hooks so you can modify memory and change memory protection in binaries protected by VMProtect.
  ☆129Updated 4 years ago
• NewWorldComingSoon / llvm-msvc
  This project migrated to https://github.com/backengineering/llvm-msvc
  ☆84Updated 2 years ago
• irql / nokd
  reverse engineering of the windows nt kernel debugger protocol & reimplementation.
  ☆29Updated last year
• morsisko / xFindOut
  A plugin to x64dbg that lets you find out what writes to/accesses particular address
  ☆115Updated 4 years ago