Alternatives and similar repositories for XPEViewer

Users that are interested in XPEViewer are comparing it to the libraries listed below

• horsicq / Nauz-File-Detector
  Linker/Compiler/Tool detector for Windows, Linux and MacOS.
  ☆569Updated last week
• hasherezade / tiny_tracer
  A Pin Tool for tracing API calls etc
  ☆1,539Updated 2 weeks ago
• petoolse / petools
  PE Tools - Portable executable (PE) manipulation toolkit
  ☆1,132Updated 7 years ago
• hfiref0x / WinObjEx64
  Windows Object Explorer 64-bit
  ☆1,823Updated 2 weeks ago
• horsicq / PDBRipper
  PDBRipper is a utility for extract an information from PDB-files.
  ☆852Updated last week
• hasherezade / pe-bear-releases
  PE-bear (builds only)
  ☆782Updated 2 years ago
• vitoplantamura / BugChecker
  SoftICE-like kernel debugger for Windows 11
  ☆989Updated 2 years ago
• hasherezade / libpeconv
  A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl
  ☆1,282Updated 4 months ago
• fr0gger / awesome-ida-x64-olly-plugin
  A curated list of IDA x64DBG, Ghidra and OllyDBG plugins.
  ☆1,433Updated last year
• winsiderss / phnt
  Native API header files for the System Informer project.
  ☆1,262Updated 4 months ago
• hfiref0x / SyscallTables
  Windows NT Syscall tables
  ☆1,332Updated last month
• mrexodia / TitanHide
  Hiding kernel-driver for x86/x64.
  ☆2,476Updated last month
• ThunderCls / xAnalyzer
  xAnalyzer plugin for x64dbg
  ☆1,140Updated last month
• 0xnobody / vmpdump
  A dynamic VMP dumper and import fixer, powered by VTIL.
  ☆1,290Updated 4 years ago
• j00ru / windows-syscalls
  Windows System Call Tables (NT/2000/XP/2003/Vista/7/8/10/11)
  ☆2,415Updated 5 months ago
• can1357 / NoVmp
  A static devirtualizer for VMProtect x64 3.x. powered by VTIL.
  ☆2,050Updated 4 years ago
• zodiacon / SystemExplorer
  Windows System Explorer
  ☆866Updated last year
• JonathanSalwan / VMProtect-devirtualization
  Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.
  ☆1,320Updated 3 years ago
• NtQuery / Scylla
  Imports Reconstructor
  ☆1,264Updated 2 years ago
• mrexodia / dumpulator
  An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…
  ☆831Updated last year
• everdox / InfinityHook
  Hook system calls, context switches, page faults and more.
  ☆2,589Updated 2 years ago
• bootleg / ret-sync
  ret-sync is a set of plugins that helps to synchronize a debugging session (WinDbg/GDB/LLDB/OllyDbg2/x64dbg) with IDA/Ghidra/Binary Ninja…
  ☆2,215Updated this week
• horsicq / x64dbg-Plugin-Manager
  Plugin manager for x64dbg
  ☆892Updated last week
• x64dbg / Scripts
  A collection of x64dbg scripts. Feel free to submit a pull request to add your script.
  ☆529Updated last year
• 4d61726b / VirtualKD-Redux
  VirtualKD-Redux - A revival and modernization of VirtualKD
  ☆930Updated last year
• x64dbg / ScyllaHide
  Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide
  ☆3,844Updated last year
• unipacker / unipacker
  Automatic and platform-independent unpacker for Windows binaries based on emulation
  ☆717Updated last month
• x64dbg / TitanEngine
  TitanEngine Community Edition. Debug engine used by x64dbg.
  ☆445Updated last month
• glmcdona / Process-Dump
  Windows tool for dumping malware PE files from memory back to disk for analysis.
  ☆1,782Updated last year
• wbenny / injdrv
  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
  ☆1,250Updated last year