Small visualizator for PE files
☆70Sep 20, 2023Updated 2 years ago
Alternatives and similar repositories for pe2pic
Users that are interested in pe2pic are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A set of small utilities, helpers for PIN tracers☆37Feb 15, 2026Updated last month
- MalUnpack companion driver☆99Jun 17, 2024Updated last year
- Use Windows Management Instrumentation interfaces to perform actions on a Windows system from a Linux System☆16Mar 15, 2012Updated 14 years ago
- Uses WMI Event Win32_ModuleLoadTrace to monitor module loading. Provides filters, and detailed data. Has an option to monitor for CLR Inj…☆42May 9, 2019Updated 6 years ago
- Kernel Security driver used to block past, current and future process injection techniques on Windows Operating System.☆153Sep 11, 2022Updated 3 years ago
- A WinDbg extension to trace COM interactions☆131Aug 14, 2025Updated 7 months ago
- Сlone of POLE - portable library for structured storage.☆11Apr 25, 2018Updated 7 years ago
- Open Anti Cheat☆27Jul 16, 2022Updated 3 years ago
- A template for projects using both libPeConv and MS Detours☆16Oct 5, 2025Updated 5 months ago
- A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class☆27Sep 15, 2023Updated 2 years ago
- A tool to show the method info at runtime☆13Aug 12, 2019Updated 6 years ago
- Golang bindings for PE-sieve☆42Nov 11, 2023Updated 2 years ago
- kernel-mode TDI client which can send and receive HTTP requests☆56Jun 9, 2018Updated 7 years ago
- a PE Loader and Windows API tracer. Useful in malware analysis.☆142Sep 19, 2022Updated 3 years ago
- A post-processing script for TinyTracer☆39Mar 22, 2023Updated 3 years ago
- Signature finder (from PE-bear)☆40Aug 25, 2025Updated 6 months ago
- Packet Injection With WFP☆16Feb 20, 2023Updated 3 years ago
- Diff plugin for x64dbg☆30Dec 14, 2020Updated 5 years ago
- A simple password-based PE encryptor for Windows 32-bit executables.☆51Jan 9, 2025Updated last year
- A more stealthy variant of "DLL hollowing"☆363Mar 8, 2024Updated 2 years ago
- windows内核安全与驱动开发代码☆12Apr 4, 2020Updated 5 years ago
- MASM Crypto Lib☆16Sep 27, 2015Updated 10 years ago
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆21Jan 25, 2022Updated 4 years ago
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆146Feb 23, 2019Updated 7 years ago
- Low-level MS Windows registry files analysis tools☆19May 5, 2016Updated 9 years ago
- Python wrappers for mal_unpack☆37Sep 19, 2023Updated 2 years ago
- 驱动层拦截web访问源码☆30Apr 2, 2018Updated 7 years ago
- TIM is a Kusto investigation platform that enables a user to quickly pivot between data sources; annotate their findings; and promotes co…☆23Aug 7, 2024Updated last year
- ☆33Feb 26, 2022Updated 4 years ago
- AMSI detection PoC☆31Apr 14, 2020Updated 5 years ago
- Transacted Hollowing - a PE injection technique, hybrid between ProcessHollowing and ProcessDoppelgänging☆581Mar 8, 2024Updated 2 years ago
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆45Oct 26, 2018Updated 7 years ago
- Reverse engineered API for Microsoft's Time Travel Debugger☆36Apr 18, 2024Updated last year
- DateTime Library - a library written in assembler (for x86 and x64) which provides simple date and time conversion, manipulation and comp…☆19Apr 11, 2024Updated last year
- Windows API Call Obfuscation☆113Dec 9, 2022Updated 3 years ago
- A bunch of library code that can easily be included in new/prototype projects with few (usually zero) dependencies, even on themselves.☆12Jul 26, 2020Updated 5 years ago
- Windows build files for the VMHunt Intel PIN Trace tool☆19Nov 26, 2018Updated 7 years ago
- Windows device tree walker☆15Sep 19, 2018Updated 7 years ago
- Parsers for custom malware formats ("Funky malware formats")☆98Jan 8, 2022Updated 4 years ago