Alternatives and similar repositories for XPEViewer:

Users that are interested in XPEViewer are comparing it to the libraries listed below

• horsicq / Nauz-File-Detector
  Linker/Compiler/Tool detector for Windows, Linux and MacOS.
  ☆547Updated this week
• hasherezade / pe-bear-releases
  PE-bear (builds only)
  ☆775Updated last year
• hfiref0x / WinObjEx64
  Windows Object Explorer 64-bit
  ☆1,717Updated last month
• hasherezade / libpeconv
  A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl
  ☆1,189Updated 3 weeks ago
• horsicq / PDBRipper
  PDBRipper is a utility for extract an information from PDB-files.
  ☆826Updated this week
• petoolse / petools
  PE Tools - Portable executable (PE) manipulation toolkit
  ☆1,083Updated 6 years ago
• mrexodia / TitanHide
  Hiding kernel-driver for x86/x64.
  ☆2,233Updated last month
• winsiderss / phnt
  Native API header files for the System Informer project.
  ☆1,146Updated last week
• hasherezade / tiny_tracer
  A Pin Tool for tracing API calls etc
  ☆1,399Updated last month
• vitoplantamura / BugChecker
  SoftICE-like kernel debugger for Windows 11
  ☆959Updated last year
• everdox / InfinityHook
  Hook system calls, context switches, page faults and more.
  ☆2,514Updated last year
• fr0gger / awesome-ida-x64-olly-plugin
  A curated list of IDA x64DBG, Ghidra and OllyDBG plugins.
  ☆1,358Updated 9 months ago
• ThunderCls / xAnalyzer
  xAnalyzer plugin for x64dbg
  ☆1,071Updated 3 years ago
• zodiacon / SystemExplorer
  Windows System Explorer
  ☆848Updated 10 months ago
• wbenny / injdrv
  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
  ☆1,206Updated 10 months ago
• can1357 / NoVmp
  A static devirtualizer for VMProtect x64 3.x. powered by VTIL.
  ☆2,002Updated 3 years ago
• mrexodia / dumpulator
  An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…
  ☆786Updated last year
• j00ru / windows-syscalls
  Windows System Call Tables (NT/2000/XP/2003/Vista/7/8/10/11)
  ☆2,280Updated last month
• HyperDbg / HyperDbg
  State-of-the-art native debugging tools
  ☆3,155Updated last week
• x64dbg / Scripts
  A collection of x64dbg scripts. Feel free to submit a pull request to add your script.
  ☆516Updated 9 months ago
• 4d61726b / VirtualKD-Redux
  VirtualKD-Redux - A revival and modernization of VirtualKD
  ☆868Updated 9 months ago
• hfiref0x / SyscallTables
  Windows NT Syscall tables
  ☆1,255Updated last month
• bootleg / ret-sync
  ret-sync is a set of plugins that helps to synchronize a debugging session (WinDbg/GDB/LLDB/OllyDbg2/x64dbg) with IDA/Ghidra/Binary Ninja…
  ☆2,114Updated last year
• 0xnobody / vmpdump
  A dynamic VMP dumper and import fixer, powered by VTIL.
  ☆1,205Updated 4 years ago
• NtQuery / Scylla
  Imports Reconstructor
  ☆1,180Updated last year
• JonathanSalwan / VMProtect-devirtualization
  Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.
  ☆1,221Updated 2 years ago
• iPower / KasperskyHook
  Hook system calls on Windows by using Kaspersky's hypervisor
  ☆1,159Updated 11 months ago
• JKornev / hidden
  🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc
  ☆1,882Updated 2 years ago
• horsicq / xntsv
  XNTSV program for detailed viewing of system structures for Windows.
  ☆456Updated this week
• zodiacon / ProcMonXv2
  Process Monitor X v2
  ☆604Updated last year