Alternatives and similar repositories for winapiexec

Users that are interested in winapiexec are comparing it to the libraries listed below

• m417z / global-inject-demo
  A global injection and hooking example
  ☆142Updated last year
• zodiacon / ObjectExplorer
  Explore Kernel Objects on Windows
  ☆216Updated 2 months ago
• zodiacon / TotalPE2
  PE Viewer
  ☆181Updated 4 months ago
• daem0nc0re / SharpWnfSuite
  C# Utilities for Windows Notification Facility
  ☆152Updated last month
• cyberark / RPCMon
  RPC Monitor tool based on Event Tracing for Windows
  ☆356Updated 9 months ago
• 0xf005ba11 / vmplex-ws
  A tabbed UI for Microsoft's Hyper-V
  ☆217Updated 9 months ago
• zodiacon / TotalPE
  Yet another PE Viewer
  ☆142Updated 2 years ago
• thesecretclub / SandboxBootkit
  Bootkit for Windows Sandbox to disable DSE/PatchGuard.
  ☆280Updated 7 months ago
• ElliotKillick / LdrLockLiberator
  For when DLLMain is the only way
  ☆377Updated 7 months ago
• 0xeb / WinTools
  A collection of free miscellaneous Windows tools
  ☆135Updated 9 months ago
• m417z / Multiline-Ultimate-Assembler
  A multiline (and ultimate) assembler (and disassembler) plugin for x64dbg and OllyDbg. A perfect tool for modifying and extending a compi…
  ☆142Updated 4 months ago
• DamonMohammadbagher / ETWProcessMon2
  ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detecti…
  ☆304Updated last year
• zodiacon / WinSpy
  Enhanced version of the classic Spy++ tool
  ☆198Updated last year
• itm4n / PPLcontrol
  Controlling Windows PP(L)s
  ☆329Updated last year
• hfiref0x / AuthHashCalc
  Authenticode Hash Calculator for PE32/PE32+ files
  ☆111Updated last year
• pathtofile / Sealighter
  Sysmon-Like research tool for ETW
  ☆353Updated 2 years ago
• zodiacon / sysrun
  Run any executable as SYSTEM account (no service required)
  ☆130Updated last year
• mrexodia / phnt-single-header
  Single header version of System Informer's phnt library.
  ☆221Updated last week
• ergrelet / windiff
  Web-based tool that allows comparing symbol, type and syscall information of Microsoft Windows binaries across different versions of the …
  ☆344Updated last month
• diversenok / Suspending-Techniques
  Comparing, discussing, and bypassing various techniques for suspending and freezing processes on Windows.
  ☆124Updated 3 years ago
• zodiacon / WFPExplorer
  Windows Filtering Platform Explorer
  ☆262Updated 4 months ago
• tastypepperoni / RunAsWinTcb
  ☆134Updated 2 years ago
• LloydLabs / ntqueueapcthreadex-ntdll-gadget-injection
  This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and SystemArgument[0-3] parameters by passing a random pop r32; ret …
  ☆249Updated 2 years ago
• hackerhouse-opensource / SignToolEx
  Patching "signtool.exe" to accept expired certificates for code-signing.
  ☆280Updated 10 months ago
• EvanMcBroom / perfect-loader
  Load a dynamic library from memory by modifying the native Windows loader
  ☆225Updated 3 weeks ago
• hfiref0x / SXSEXP
  Expand compressed files from WinSxS folder
  ☆158Updated 11 months ago
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆245Updated 2 years ago
• therealdreg / masm32-kernel-programming
  masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)
  ☆124Updated last year
• AlteredSecurity / Disable-TamperProtection
  A POC to disable TamperProtection and other Defender / MDE components
  ☆217Updated 11 months ago
• namazso / MagicSigner
  Signtool for expired certificates
  ☆477Updated last year