Alternatives and similar repositories for PEdumper

Users that are interested in PEdumper are comparing it to the libraries listed below

• hasherezade / IAT_patcher_samples
  Sample libraries to be used with IAT Patcher
  ☆34Updated 2 years ago
• AlephNull314 / AbsoluteZero
  Anti-AV compilation
  ☆44Updated 11 years ago
• BreakingMalwareResearch / Captain-Hook
  ☆51Updated 8 years ago
• stephenfewer / OllyCallTrace
  OllyCallTrace is a plugin for OllyDbg to trace the call chain of a thread.
  ☆53Updated 13 years ago
• tinysec / runwithdll
  windows create process with a dll load first time via LdrHook
  ☆30Updated 8 years ago
• NtRaiseHardError / Dreadnought
  PoC for detecting and dumping code injection (built and extended on UnRunPE)
  ☆56Updated 6 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆38Updated 8 years ago
• atlantis2013 / Evasion-Tools
  Anti-technique Codes, Detection of Anti-technique codes
  ☆38Updated 11 years ago
• glmcdona / MALM
  MALM: Malware Monitor
  ☆49Updated 12 years ago
• nettitude / DLLInjection
  DLL Injection Library & Tools
  ☆71Updated 9 years ago
• eschweiler / ProReversing
  Open and generic Anti-Anti Reversing Framework. Works in 32 and 64 bits.
  ☆65Updated 12 years ago
• nccgroup / ncloader
  A session-0 capable dll injection utility
  ☆76Updated 7 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 7 years ago
• 0xdabbad00 / OpenHIPS
  OpenHIPS prevents exploitation of Windows systems
  ☆35Updated 12 years ago
• rwfpl / rewolf-ldrdebug
  Helper utility for debugging windows PE/PE+ loader.
  ☆52Updated 10 years ago
• REhints / BootkitsBook
  repository with additional materials and source code
  ☆31Updated 8 years ago
• vallejocc / PoC-Inject-Data-WM_COPYDATA
  A tiny PoC to inject and execute code into explorer.exe with WM_SETTEXT+WM_COPYDATA+SetThreadContext
  ☆50Updated 7 years ago
• sogeti-esec-lab / REBoot
  Bootkits Revisited
  ☆40Updated 11 years ago
• ctxis / capemon
  CAPE monitor DLLs
  ☆41Updated 5 years ago
• edix / MalwareResourceScanner
  Scanning and identifying XOR encrypted PE files in PE resources
  ☆28Updated 11 years ago
• deroko / activationcontexthook
  ☆34Updated 7 years ago
• apriorit / Simple-Antirootkit-SST-Unhooker
  This is a demo project to illustrate the way to verify and restore original SST in case of some malware hooks
  ☆33Updated 8 years ago
• hasherezade / decryptors_archive
  Archive of ransomware decryptors
  ☆30Updated 7 years ago
• psaneme / Kung-Fu-Malware
  ☆33Updated 6 years ago
• Cr4sh / SimpleUnpacker
  Simple tool for unpacking packed/protected malware executables.
  ☆33Updated 13 years ago
• NtRaiseHardError / UnRunPE
  PoC for detecting and dumping process hollowing code injection
  ☆51Updated 6 years ago
• Microwave89 / syscalltest
  PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls
  ☆38Updated 9 years ago
• stephenfewer / OllyHeapTrace
  OllyHeapTrace is a plugin for OllyDbg to trace the heap operations being performed by a process.
  ☆55Updated 13 years ago
• Rootkitsmm-zz / WinIo-Vidix
  Exploit WinIo - Vidix and Run Shellcode in Windows Kerne ( local Privilege escalation )
  ☆28Updated 9 years ago
• herrcore / CmdDesktopSwitch
  CmdDesktopSwitch is a small utility that lists all windows desktops and provides the option to switch between them. This can be used to i…
  ☆35Updated 9 years ago