horsicq / XPEViewer

Related projects ⓘ

Alternatives and complementary repositories for XPEViewer

• horsicq / PDBRipper
  PDBRipper is a utility for extract an information from PDB-files.
  ☆801Updated this week
• hasherezade / tiny_tracer
  A Pin Tool for tracing API calls etc
  ☆1,301Updated 3 weeks ago
• horsicq / Nauz-File-Detector
  Linker/Compiler/Tool detector for Windows, Linux and MacOS.
  ☆526Updated this week
• hasherezade / pe-bear-releases
  PE-bear (builds only)
  ☆769Updated last year
• hasherezade / libpeconv
  A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl
  ☆1,117Updated 2 weeks ago
• petoolse / petools
  PE Tools - Portable executable (PE) manipulation toolkit
  ☆1,042Updated 6 years ago
• hfiref0x / WinObjEx64
  Windows Object Explorer 64-bit
  ☆1,648Updated last month
• fr0gger / awesome-ida-x64-olly-plugin
  A curated list of IDA x64DBG, Ghidra and OllyDBG plugins.
  ☆1,279Updated 5 months ago
• mrexodia / dumpulator
  An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…
  ☆750Updated 9 months ago
• mrexodia / TitanHide
  Hiding kernel-driver for x86/x64.
  ☆2,122Updated 10 months ago
• winsiderss / phnt
  Native API header files for the System Informer project.
  ☆1,049Updated 2 months ago
• x64dbg / Scripts
  A collection of x64dbg scripts. Feel free to submit a pull request to add your script.
  ☆501Updated 5 months ago
• 4d61726b / VirtualKD-Redux
  VirtualKD-Redux - A revival and modernization of VirtualKD
  ☆820Updated 4 months ago
• 0xnobody / vmpdump
  A dynamic VMP dumper and import fixer, powered by VTIL.
  ☆1,154Updated 4 years ago
• ThunderCls / xAnalyzer
  xAnalyzer plugin for x64dbg
  ☆1,019Updated 3 years ago
• can1357 / NoVmp
  A static devirtualizer for VMProtect x64 3.x. powered by VTIL.
  ☆1,957Updated 3 years ago
• bootleg / ret-sync
  ret-sync is a set of plugins that helps to synchronize a debugging session (WinDbg/GDB/LLDB/OllyDbg2/x64dbg) with IDA/Ghidra/Binary Ninja…
  ☆2,038Updated 8 months ago
• everdox / InfinityHook
  Hook system calls, context switches, page faults and more.
  ☆2,423Updated last year
• silverf0x / RpcView
  RpcView is a free tool to explore and decompile Microsoft RPC interfaces
  ☆928Updated last year
• gaasedelen / tenet
  A Trace Explorer for Reverse Engineers
  ☆1,328Updated last year
• x64dbg / ScyllaHide
  Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide
  ☆3,476Updated 5 months ago
• horsicq / XOpcodeCalc
  Opcode calculator / ASM calculator
  ☆373Updated this week
• odzhan / injection
  Windows process injection methods
  ☆142Updated last year
• hfiref0x / SyscallTables
  Windows NT Syscall tables
  ☆1,156Updated 2 weeks ago
• naim94a / lumen
  A private Lumina server for IDA Pro
  ☆932Updated 2 weeks ago
• vitoplantamura / BugChecker
  SoftICE-like kernel debugger for Windows 11
  ☆930Updated last year
• horsicq / xntsv
  XNTSV program for detailed viewing of system structures for Windows.
  ☆446Updated this week
• JonathanSalwan / VMProtect-devirtualization
  Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.
  ☆1,180Updated 2 years ago
• NtQuery / Scylla
  Imports Reconstructor
  ☆1,120Updated last year
• j00ru / windows-syscalls
  Windows System Call Tables (NT/2000/XP/2003/Vista/7/8/10/11)
  ☆2,177Updated 3 weeks ago