Alternatives and similar repositories for emulator:

Users that are interested in emulator are comparing it to the libraries listed below

• x86matthew / WinVisor
  WinVisor - A hypervisor-based emulator for Windows x64 user-mode executables using Windows Hypervisor Platform API
  ☆548Updated 2 months ago
• KasperskyLab / hrtng
  IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformati…
  ☆1,042Updated last week
• mrexodia / dumpulator
  An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…
  ☆786Updated last year
• es3n1n / obfuscator
  PE bin2bin obfuscator
  ☆654Updated last month
• weak1337 / Alcatraz
  x64 binary obfuscator
  ☆1,794Updated last year
• m417z / ntdoc
  Native API online documentation, based on the System Informer (formerly Process Hacker) phnt headers
  ☆233Updated this week
• revng / revng-c
  ☆426Updated 3 months ago
• hasherezade / tiny_tracer
  A Pin Tool for tracing API calls etc
  ☆1,399Updated last month
• kernelwernel / VMAware
  VM detection library and tool
  ☆496Updated this week
• archercreat / titan
  Titan is a VMProtect devirtualizer
  ☆19Updated last year
• iPower / KasperskyHook
  Hook system calls on Windows by using Kaspersky's hypervisor
  ☆1,159Updated 11 months ago
• zer0condition / ReverseKit
  x64 Dynamic Reverse Engineering Toolkit
  ☆633Updated last year
• vitoplantamura / BugChecker
  SoftICE-like kernel debugger for Windows 11
  ☆959Updated last year
• winsiderss / phnt
  Native API header files for the System Informer project.
  ☆1,146Updated 2 weeks ago
• NaC-L / Mergen
  Deobfuscation via optimization with usage of LLVM IR and parsing assembly.
  ☆544Updated this week
• horsicq / PDBRipper
  PDBRipper is a utility for extract an information from PDB-files.
  ☆826Updated this week
• vxlang / vxlang-page
  protector & obfuscator & code virtualizer
  ☆511Updated this week
• namazso / MagicSigner
  Signtool for expired certificates
  ☆473Updated last year
• wbenny / injdrv
  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
  ☆1,206Updated 10 months ago
• ElliotKillick / operating-system-design-review
  Operating System Design Review: A systemic analysis of modern systems architecture
  ☆306Updated last month
• Cracked5pider / LdrLibraryEx
  A small x64 library to load dll's into memory.
  ☆435Updated last year
• donnaskiez / ac
  kernel mode anti cheat
  ☆520Updated 7 months ago
• hasherezade / mal_unpack
  Dynamic unpacker based on PE-sieve
  ☆717Updated last week
• hfiref0x / SyscallTables
  Windows NT Syscall tables
  ☆1,255Updated last month
• notpidgey / EagleVM
  Native code virtualizer for x64 binaries
  ☆473Updated 3 months ago
• momo5502 / hypervisor
  🧪 Hypervisor with EPT hooking support.
  ☆207Updated last month
• Xyrem / HyperDeceit
  HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate oper…
  ☆359Updated last year
• fr0gger / awesome-ida-x64-olly-plugin
  A curated list of IDA x64DBG, Ghidra and OllyDBG plugins.
  ☆1,358Updated 9 months ago
• crvvdev / MasterHide
  A x64 Windows Rootkit using SSDT or Hypervisor hook
  ☆535Updated 2 months ago
• emproof-com / nyxstone
  Nyxstone: assembly / disassembly library based on LLVM, implemented in C++ with Rust and Python bindings, maintained by emproof.com
  ☆351Updated 3 months ago