Alternatives and similar repositories for XPEViewer

Users that are interested in XPEViewer are comparing it to the libraries listed below

• hasherezade / pe-bear-releases
  PE-bear (builds only)
  ☆780Updated 2 years ago
• horsicq / PDBRipper
  PDBRipper is a utility for extract an information from PDB-files.
  ☆847Updated this week
• horsicq / Nauz-File-Detector
  Linker/Compiler/Tool detector for Windows, Linux and MacOS.
  ☆567Updated this week
• hfiref0x / WinObjEx64
  Windows Object Explorer 64-bit
  ☆1,806Updated this week
• petoolse / petools
  PE Tools - Portable executable (PE) manipulation toolkit
  ☆1,120Updated 7 years ago
• vitoplantamura / BugChecker
  SoftICE-like kernel debugger for Windows 11
  ☆981Updated 2 years ago
• hasherezade / tiny_tracer
  A Pin Tool for tracing API calls etc
  ☆1,524Updated 2 months ago
• hasherezade / libpeconv
  A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl
  ☆1,269Updated 3 months ago
• hfiref0x / SyscallTables
  Windows NT Syscall tables
  ☆1,318Updated last month
• winsiderss / phnt
  Native API header files for the System Informer project.
  ☆1,243Updated 3 months ago
• fr0gger / awesome-ida-x64-olly-plugin
  A curated list of IDA x64DBG, Ghidra and OllyDBG plugins.
  ☆1,416Updated last year
• ThunderCls / xAnalyzer
  xAnalyzer plugin for x64dbg
  ☆1,120Updated last week
• 0xnobody / vmpdump
  A dynamic VMP dumper and import fixer, powered by VTIL.
  ☆1,278Updated 4 years ago
• mrexodia / TitanHide
  Hiding kernel-driver for x86/x64.
  ☆2,442Updated 2 months ago
• can1357 / NoVmp
  A static devirtualizer for VMProtect x64 3.x. powered by VTIL.
  ☆2,041Updated 4 years ago
• NtQuery / Scylla
  Imports Reconstructor
  ☆1,250Updated 2 years ago
• bootleg / ret-sync
  ret-sync is a set of plugins that helps to synchronize a debugging session (WinDbg/GDB/LLDB/OllyDbg2/x64dbg) with IDA/Ghidra/Binary Ninja…
  ☆2,199Updated last year
• 4d61726b / VirtualKD-Redux
  VirtualKD-Redux - A revival and modernization of VirtualKD
  ☆924Updated last year
• zodiacon / SystemExplorer
  Windows System Explorer
  ☆864Updated last year
• zodiacon / ProcMonXv2
  Process Monitor X v2
  ☆628Updated last year
• mrexodia / dumpulator
  An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…
  ☆826Updated last year
• j00ru / windows-syscalls
  Windows System Call Tables (NT/2000/XP/2003/Vista/7/8/10/11)
  ☆2,394Updated 3 months ago
• wbenny / injdrv
  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
  ☆1,243Updated last year
• JonathanSalwan / VMProtect-devirtualization
  Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.
  ☆1,301Updated 3 years ago
• x64dbg / Scripts
  A collection of x64dbg scripts. Feel free to submit a pull request to add your script.
  ☆530Updated last year
• unipacker / unipacker
  Automatic and platform-independent unpacker for Windows binaries based on emulation
  ☆708Updated last week
• horsicq / xntsv
  XNTSV program for detailed viewing of system structures for Windows.
  ☆465Updated this week
• zodiacon / AllTools
  All reasonably stable tools
  ☆1,310Updated last month
• iPower / KasperskyHook
  Hook system calls on Windows by using Kaspersky's hypervisor
  ☆1,222Updated last year
• HyperDbg / HyperDbg
  State-of-the-art native debugging tools
  ☆3,431Updated this week