modern c++ wrapper around the microsoft portable executable file format
☆35Nov 22, 2025Updated 3 months ago
Alternatives and similar repositories for portable_executable
Users that are interested in portable_executable are comparing it to the libraries listed below
Sorting:
- VMProtect 3.5+ dynamic import resolver☆21Jan 5, 2025Updated last year
- Lazy Import technique implementation to call any import in the runtime☆28Jun 16, 2024Updated last year
- ☆37Sep 26, 2024Updated last year
- Bypasses VMProtect's VMWare & VMWare Tools detection trough user-mode API hooks.☆25Aug 3, 2024Updated last year
- ☆18Jan 11, 2026Updated 2 months ago
- Use NtSetInformationThread(ThreadBreakOnTermination) for anti-debugging☆15Sep 21, 2019Updated 6 years ago
- ☆19Feb 5, 2025Updated last year
- Improved VMP Idea(detect anti-anti-debug tools by bug)☆48Jun 7, 2023Updated 2 years ago
- windows syscalls with a single line and a high level of abstraction. has modern cpp20 wrappers and utilities, range-based DLL and export …☆227Nov 2, 2025Updated 4 months ago
- Research-focused hypervisor offering advanced tools for debugging, virtual machine introspection, and automation.☆44Nov 21, 2025Updated 4 months ago
- direct systemcalls with a modern c++20 interface.☆45Jan 6, 2023Updated 3 years ago
- A Rust library along with a Win32 GUI application to determine the driver load order of a Windows system (cf. https://colinfinck.de/posts…☆12Jan 26, 2025Updated last year
- STALCRAFT: X CHAMS☆11Apr 2, 2025Updated 11 months ago
- This is an EfiGuard BootLoader that can boot EfiGuard from Usermode with no USB or Setup as a Single Executable with automatic File Dumpi…☆70Sep 27, 2025Updated 5 months ago
- ☆48Jul 7, 2024Updated last year
- ☆64Sep 28, 2022Updated 3 years ago
- Old project (2020) reformed. Modifies gRT->GetVariable sub function from EFI_APPLICATION. Tested on Win10 22H2 (AMD).☆55Feb 28, 2024Updated 2 years ago
- A stealthy anti-fingerprinting toolkit for Windows☆103Aug 5, 2025Updated 7 months ago
- Kernel anti-cheat for protecting software.☆116Oct 2, 2025Updated 5 months ago
- A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using Instrumentation…☆39Sep 23, 2023Updated 2 years ago
- A simple example how to decrypt kernel debugger data block☆32Feb 8, 2021Updated 5 years ago
- IDA 9.X Function String Associate Plugin☆25Mar 6, 2026Updated 2 weeks ago
- Efficient general mixed boolean-arithmetic (MBA) simplifier☆126Updated this week
- Xbox GameBar Overlay GUI☆25Aug 3, 2024Updated last year
- A C++17 header-only library that provides compile-time string encryption and decryption using SIMD instructions and junk code injection.☆26Mar 2, 2026Updated 2 weeks ago
- Inject dll to process in driver☆10Aug 27, 2024Updated last year
- Emulate Drivers in RING3 with self context mapping or unicorn☆34Dec 31, 2024Updated last year
- PAGE_GUARD based hooking library☆52Jul 25, 2022Updated 3 years ago
- A demonstration of hooking into the VMProtect-2 virtual machine☆24Nov 9, 2023Updated 2 years ago
- Rust crate to parse user-mode minidump files generated on Windows☆18Nov 17, 2025Updated 4 months ago
- NTAPI hook bypass with (semi) legit stack trace☆19May 9, 2023Updated 2 years ago
- base for testing☆187Sep 28, 2024Updated last year
- ☆16Aug 28, 2024Updated last year
- Executing EXE Files From Memory☆11Nov 1, 2023Updated 2 years ago
- nmi stackwalking + module verification☆164Dec 28, 2023Updated 2 years ago
- A reimplementation of byfrons NO_ACCESS memory protection feature☆58Aug 5, 2022Updated 3 years ago
- A minimalistic logger for Windows Kernel Drivers.☆25Mar 8, 2024Updated 2 years ago
- ☆12Apr 7, 2022Updated 3 years ago
- Awesome MalDev Links☆52Updated this week