Alternatives and similar repositories for NtPhp

Users that are interested in NtPhp are comparing it to the libraries listed below

• vmcall / x64-vm
  x86-64 virtual machine and disassembler
  ☆146Updated 5 years ago
• vovkos / protolesshooks
  API monitoring via return-hijacking thunks; works without information about target function prototypes.
  ☆118Updated 5 years ago
• amiryeshurun / HyperWin
  A native hypervisor designed for the Windows operating system
  ☆123Updated 4 years ago
• notscimmy / libcapcom
  Capcom driver exploit wrapper
  ☆126Updated 6 years ago
• shareef12 / libpdb
  Parser for Microsoft Program Database (PDB) files
  ☆76Updated 5 years ago
• Biswa96 / PDBDownloader
  Standalone program to download PDB Symbol files for debugging without WDK
  ☆79Updated 6 years ago
• ajkhoury / ApiSet
  API Set resolver for Windows
  ☆136Updated 11 months ago
• Fyyre / ntdll
  ntdll.h - compatible with MSVC 6.0, Intel C++ Compiler and MinGW. Serves as a complete replacement for Windows.h
  ☆143Updated 6 years ago
• ajkhoury / Errata1337
  ☆69Updated 4 years ago
• kkent030315 / NtSymbol
  Resolve DOS MZ executable symbols at runtime
  ☆95Updated 3 years ago
• can1357 / vmware-rpc
  Header-only VMWare Backdoor API Implementation & Effortless VMX Patcher for Custom Guest-to-Host RPCs
  ☆101Updated 4 years ago
• d35ha / xLogger
  Simple windows API logger
  ☆108Updated 5 years ago
• joshfinley / SyscallDumper
  Dump system call codes, names, and offsets from Ntdll.dll
  ☆78Updated last year
• hfiref0x / AsIo3Unlock
  ASUSTeK AsIO3 I/O driver unlock
  ☆22Updated 4 years ago
• Gbps / CapcomLib
  A reflexive driver loader to bypass Windows DSE (featuring a custom PE loader)
  ☆41Updated 6 years ago
• ajkhoury / pdbfetch
  Fetch PDB symbols directly from Microsoft's symbol servers
  ☆44Updated 3 years ago
• 0dayatday0 / BattleFN-cheat-analysis
  ☆47Updated 3 years ago
• Synestraa / Highcall-Library
  usermode standalone kernel interface
  ☆111Updated 7 years ago
• gavz / analysis.oreans
  🔎 Analysis of Oreans: Looking inside Themida, WinLicense, and CodeVirtualizer
  ☆35Updated 4 years ago
• ionescu007 / r0ak
  ☆33Updated 6 years ago
• ntdiff / ntdiff
  ☆130Updated 10 months ago
• bi-zone / rdtsc-checkvirt-poc
  Virtualization detection through speculative execution PoCs and papers
  ☆70Updated 7 years ago
• Microwave89 / createuserprocess
  Three Tiny Examples of Directly Using Vista's NtCreateUserProcess
  ☆88Updated 9 years ago
• niemand-sec / Reversing-XignCode3-Driver
  I'm going to be dropping code from the XC3 Driver (result of reversing the driver)
  ☆70Updated 5 years ago
• n00bk1t / n00bk1t
  ☆57Updated 11 years ago
• rwfpl / rewolf-msi-exploit
  MSI NTIOLib/WinIO Local Privilege Escalation exploit
  ☆96Updated 8 years ago
• arbiter34 / GetProcAddress
  Recreation of GetProcAddress without external dependencies on Windows Libraries
  ☆90Updated 9 years ago
• vxcute / WindowsInternals
  Yet another windows internals repo
  ☆207Updated 3 years ago
• yardenshafir / SymlinkCallback
  A driver that hooks C: volume using symbolic link callback to track all FS access to the volume
  ☆109Updated 5 years ago
• mike1k / solving-vm-crackme-1
  Tutorial on solving a VM based CrackMe.
  ☆66Updated 5 years ago