nalsakas / pe
pe
☆32Updated 4 years ago
Alternatives and similar repositories for pe:
Users that are interested in pe are comparing it to the libraries listed below
- reconstruct z0mbie's homepage from 2005☆36Updated 3 years ago
- A local copy of Alex Ionescu's seemingly abandoned native-nt-toolkit project containing knowledge inherited from the ReactOS project.☆54Updated 5 years ago
- I was challenged by a friend to list all the processes and drivers in a system using more "unusual" methods. By doing this I learned quit…☆14Updated 8 years ago
- ☆30Updated 6 years ago
- DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10☆52Updated last year
- Pretty x86 instruction reference site generator☆60Updated 3 years ago
- ntdll.h - compatible with MSVC 6.0, Intel C++ Compiler and MinGW. Serves as a complete replacement for Windows.h☆134Updated 5 years ago
- Windows NT port of 'Main is usually a function. So then when is it not?'☆25Updated last year
- x86-64 virtual machine and disassembler☆129Updated 5 years ago
- Crash Windows 10 up to RS2 from an unprivileged process☆41Updated 7 years ago
- Three Tiny Examples of Directly Using Vista's NtCreateUserProcess☆87Updated 9 years ago
- POC Tiny PE - Example project showing (almost) minimal executable size. Without touching assembly.☆13Updated last week
- AMD SVM hypervisor rootkit proof of concept☆45Updated last year
- A driver to intercept low level windows events☆62Updated 5 years ago
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆70Updated last year
- Automatically exported from code.google.com/p/portable-executable-library☆22Updated 9 years ago
- A reflexive driver loader to bypass Windows DSE (featuring a custom PE loader)☆42Updated 6 years ago
- Lightweight x86-64 disassembling library☆41Updated 2 years ago
- The most trivial virtual machine that can run a few x86 machine code instructions.☆26Updated 8 years ago
- Virtualization detection through speculative execution PoCs and papers☆67Updated 6 years ago
- A collection of tools, source code, and papers researching Windows' implementation of CET.☆81Updated 4 years ago
- Miscellaneous Code and Docs☆79Updated last year
- Undocumented MSVC☆18Updated 8 months ago
- Figuring out the cause of a handle downgrade☆24Updated 2 years ago
- Recreation of GetProcAddress without external dependencies on Windows Libraries☆89Updated 9 years ago
- The bootloader for the latest versions of Windows NT, Windows 8 to Windows 11.☆21Updated 5 years ago
- Noah for Windows☆25Updated 4 years ago
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆26Updated last year
- Demo of hooking NtCreateFile in Notepad on x64 Windows 10 using EasyHook library☆25Updated 7 years ago
- Windows 10 PE image loader (LDR) NTDLL component toolbox☆49Updated 5 years ago