Alternatives and similar repositories for physmem

Users that are interested in physmem are comparing it to the libraries listed below

• xsh3llsh0ck / Calamity
  Example of using Windows Platform Binary Table (WPBT)
  ☆26Updated 2 years ago
• MiroKaku / Musa.Core
  Use ntdll/ntoskrnl to implement Kernel32, Advapi32 and other APIs. It includes user-mode and kernel-mode.
  ☆86Updated 2 months ago
• KNSoft / KNSoft.SlimDetours
  An improved Detours.
  ☆82Updated last month
• sonyps5201314 / wow64ext
  Another wow64ext to try to be compatible with WOW64 for all architectures.
  ☆96Updated 2 months ago
• mrexodia / EfiCMake
  CMake template for a basic EFI application/bootkit. This library is header-only, there is no EDK2 runtime!).
  ☆78Updated 3 years ago
• BerkanYildiz / EasyNT
  Windows Kernel API wrapper with simplified functions and enterprise driver extensions.
  ☆29Updated 3 months ago
• NewWorldComingSoon / llvm-msvc
  This project migrated to https://github.com/backengineering/llvm-msvc
  ☆84Updated 2 years ago
• lunar-rf / cdl86
  Tiny C x86_64 function detouring library.
  ☆24Updated last month
• Sinclairq / tp-emulator
  A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe
  ☆72Updated 2 years ago
• ekknod / KiSystemStartupMeme
  Custom KiSystemStartup, can be used to modificate kernel before boot.
  ☆52Updated 3 years ago
• HyperDbg / RedDbg
  Hypervisor-based debugger for AMD processors
  ☆59Updated last year
• ergrelet / Scylla
  Fork of Scylla with additional fixes and Python bindings.
  ☆52Updated last year
• Fyyre / ntdll
  ntdll.h - compatible with MSVC 6.0, Intel C++ Compiler and MinGW. Serves as a complete replacement for Windows.h
  ☆146Updated 6 years ago
• mibho / x64dbg-vmp-trace
  unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…
  ☆62Updated last year
• SHA-MRIZ / DisplayMiniportHooking
  ☆51Updated 4 years ago
• mrexodia / driver_unpacking
  Ghetto user mode emulation of Windows kernel drivers.
  ☆149Updated last year
• OSRDrivers / Inverted
  Example WDF/KMDF driver and test app demonstrating the "inverted call model"
  ☆37Updated 5 years ago
• ZehMatt / zyemu
  x86-64 user mode emulation using Zydis
  ☆69Updated last month
• utoni / mingw-w64-dpp
  "Mingw64 Driver Plus Plus": Mingw64, C++, DDK and (EA)STL made easy!
  ☆42Updated last week
• zodiacon / DbgPrint
  Debug Print viewer (user and kernel)
  ☆67Updated last year
• BeneficialCode / KReClassEx
  Kernel ReClassEx
  ☆64Updated last year
• charlesnathansmith / whatlicense
  WinLicense key extraction via Intel PIN
  ☆106Updated last year
• SamuelTulach / SecureHack
  Cheat for my own game SecureGame which uses a bootkit to hyperjack Hyper-V in order to access VBS enclave's memory
  ☆82Updated 10 months ago
• synctop / tpm-mmio
  Using MMIO (Memory-Mapped I/O) to read TPM 2.0 public Endorsement Key.
  ☆49Updated last year
• sigwl / AiDA
  An AI-powered assistant for IDA 9.0+ to accelerate reverse engineering of C++ games.
  ☆188Updated last week
• zodiacon / PoolMonXv3
  Monitor Kernel pool allocations tags
  ☆75Updated last year
• morsisko / xFindOut
  A plugin to x64dbg that lets you find out what writes to/accesses particular address
  ☆115Updated 4 years ago
• mzakocs / VirtualizationObfuscatorAnalysis
  A repository of IDA Databases and Binaries used for the analysis of popular commercial virtual-machine obfuscators
  ☆70Updated 3 years ago
• irql / nokd
  reverse engineering of the windows nt kernel debugger protocol & reimplementation.
  ☆29Updated last year
• SamuelTulach / SecureFakePkg
  Simple EFI runtime driver that hooks GetVariable function and returns data expected by Windows to make it think that it's running with se…
  ☆204Updated 4 years ago