Alternatives and similar repositories for PEdumper:

Users that are interested in PEdumper are comparing it to the libraries listed below

• rwfpl / rewolf-ldrdebug
  Helper utility for debugging windows PE/PE+ loader.
  ☆51Updated 9 years ago
• sogeti-esec-lab / REBoot
  Bootkits Revisited
  ☆41Updated 10 years ago
• swwwolf / obderef
  Decrement Windows Kernel for fun and profit
  ☆38Updated 7 years ago
• tandasat / cs_driver
  A sample project for using Capstone from a driver in Visual Studio 2015
  ☆33Updated 8 years ago
• BreakingMalwareResearch / Captain-Hook
  ☆51Updated 8 years ago
• tinysec / runwithdll
  windows create process with a dll load first time via LdrHook
  ☆30Updated 8 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 6 years ago
• tandasat / RemoteWriteMonitor
  A tool to help malware analysts tell that the sample is injecting code into other process.
  ☆76Updated 9 years ago
• georgenicolaou / HeavenInjector
  Simple proof of concept code for injecting libraries on 64bit processes from a 32bit process
  ☆94Updated 6 years ago
• hasherezade / IAT_patcher_samples
  Sample libraries to be used with IAT Patcher
  ☆33Updated 2 years ago
• MalwareTech / FstHook
  A library for intercepting native functions by hooking KiFastSystemCall
  ☆72Updated 4 years ago
• libyal / libsigscan
  Library for binary signature scanning.
  ☆27Updated 5 months ago
• MortenSchenk / tagWnd-Hardening-Bypass
  Bypass for the hardening against usage of tagWnd as a kernel read/write primitive
  ☆29Updated 7 years ago
• Cr4sh / DrvHide-PoC
  Hidden kernel mode code execution for bypassing modern anti-rootkits.
  ☆82Updated 14 years ago
• Microwave89 / syscalltest
  PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls
  ☆39Updated 9 years ago
• edix / HiddenProcessDetection
  Examples for detection of hidden processes on windows
  ☆33Updated 10 years ago
• Prevenity / malware_monitor
  Malware monitor template based on MinHook
  ☆16Updated 9 years ago
• AlephNull314 / AbsoluteZero
  Anti-AV compilation
  ☆42Updated 11 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆38Updated 7 years ago
• nccgroup / ncloader
  A session-0 capable dll injection utility
  ☆76Updated 6 years ago
• Cr4sh / DbgCb
  Engine for communication with remote kernel debugger (KD, WinDbg) from drivers and applications
  ☆36Updated 11 years ago
• tandasat / DrvLoader
  A command line tool to load and unload a device driver.
  ☆46Updated 7 years ago
• OsandaMalith / ApiMon
  A simple API monitor for Windbg
  ☆62Updated 7 years ago
• stephenfewer / OllyCallTrace
  OllyCallTrace is a plugin for OllyDbg to trace the call chain of a thread.
  ☆53Updated 13 years ago
• swatkat / arkitlib
  Windows anti-rootkit library
  ☆38Updated 9 years ago
• int0 / ProcessIsolator
  ☆74Updated 7 years ago
• chen-charles / PEDetour
  modify binary Portable Executable to hook its export functions
  ☆62Updated 6 years ago
• Fyyre / directntapi
  DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10
  ☆52Updated 10 months ago
• BreakingMalwareResearch / CFGExceptions
  Adding exceptions to Microsoft's Control Flow Guard (CFG)
  ☆59Updated 8 years ago
• deroko / activationcontexthook
  ☆33Updated 7 years ago