Alternatives and similar repositories for PE-library:

Users that are interested in PE-library are comparing it to the libraries listed below

• jnastarot / cleancall
  Library for using direct system calls
  ☆35Updated last month
• sgabe / SymlinkProtect
  File system minifilter driver for Windows to block symbolic link attacks.
  ☆51Updated 4 years ago
• aaaddress1 / wow64Jit
  Call 32bit NtDLL API directly from WoW64 Layer
  ☆60Updated 4 years ago
• kkent030315 / NtSymbol
  Resolve DOS MZ executable symbols at runtime
  ☆96Updated 3 years ago
• ytk2128 / pe32-password
  A simple password-based PE encryptor for Windows 32-bit executables.
  ☆51Updated 2 months ago
• JKornev / NTlib
  Static library and headers for linking your software with ntdll.dll
  ☆32Updated 5 years ago
• Microwave89 / createuserprocess
  Three Tiny Examples of Directly Using Vista's NtCreateUserProcess
  ☆87Updated 9 years ago
• Biswa96 / PDBDownloader
  Standalone program to download PDB Symbol files for debugging without WDK
  ☆76Updated 5 years ago
• hMihaiDavid / addscn
  Add an empty section to a PE file
  ☆53Updated 7 years ago
• m417z / LdrDllNotificationHook
  Hook all callbacks which are registered with LdrRegisterDllNotification
  ☆84Updated 2 years ago
• bb107 / RtlWow64
  c++ implementation of windows heavens gate
  ☆68Updated 4 years ago
• sonyps5201314 / ntdll
  a ntdll.h head file which download from network, and fix all found problems by me.
  ☆32Updated 2 months ago
• DownWithUp / ALPC-Example
  An example of a client and server using Windows' ALPC functions to send and receive data.
  ☆94Updated 2 months ago
• zodiacon / WinSys
  C++ library for low-level Windows development
  ☆72Updated 11 months ago
• JKornev / hijacken
  Analyze and attack windows applications using dll hijacking vulnerabilities
  ☆56Updated 5 years ago
• repnz / windows-inspector
  A driver to intercept low level windows events
  ☆62Updated 5 years ago
• ytk2128 / api-monitor32
  A simple tool for detecting memory modifications to Windows API.
  ☆22Updated 2 months ago
• AzAgarampur / byeintegrity3-uac
  Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler
  ☆28Updated 3 years ago
• mathisvickie / CVE-2021-21551
  arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system
  ☆56Updated 3 years ago
• SouhailHammou / KernelSymbolsHelper
  Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…
  ☆53Updated 5 years ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆70Updated last year
• yardenshafir / SymlinkCallback
  A driver that hooks C: volume using symbolic link callback to track all FS access to the volume
  ☆108Updated 4 years ago
• zodiacon / DbgPrint
  Debug Print viewer (user and kernel)
  ☆65Updated last year
• M-r-J-o-h-n / LSASS-injector
  LSASS INJECTOR
  ☆35Updated 6 years ago
• ch3rn0byl / CVE-2021-21551
  ☆26Updated 3 years ago
• apriorit / SvcHostDemo
  Demo service that runs in svchost.exe
  ☆79Updated 7 years ago
• rokups / ReflectiveLdr
  Position-idependent Windows DLL loader based on ReflectiveDLL project.
  ☆95Updated 6 years ago
• DownWithUp / DynamicKernelShellcode
  An example of how x64 kernel shellcode can dynamically find and use APIs
  ☆104Updated 4 years ago
• 0x25bit / Labs
  ☆37Updated 5 years ago
• yardenshafir / CallbackObjectAnalyzer
  Dumps information about all the callback objects found in a dump file and the functions registered for them
  ☆35Updated 4 years ago