Alternatives and similar repositories for xMalHunter:

Users that are interested in xMalHunter are comparing it to the libraries listed below

• chkpizza / runtime
  VEH Redirect & VEH Debugger
  ☆23Updated 4 years ago
• mrexodia / regstep
  Simple x64dbg plugin to show registers on every step.
  ☆16Updated 5 years ago
• therealdreg / pdbdump_bochs
  Dump PDB Symbols including support for Bochs Debugging Format (with wine support)
  ☆15Updated last year
• hasherezade / beardisasm
  A wrapper for capstone for bearparser
  ☆13Updated 2 years ago
• ek0 / hxemu
  Triton based symbolic emulator
  ☆16Updated 2 years ago
• JKornev / cfgdump
  Windbg extension that allows you analyze Control Flow Guard map
  ☆34Updated 3 years ago
• gabriellandau / CISpotter
  Code Integrity Violation Spotter
  ☆16Updated 9 months ago
• therealdreg / symseghelper
  Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode
  ☆19Updated last year
• MortenSchenk / tagWnd-Hardening-Bypass
  Bypass for the hardening against usage of tagWnd as a kernel read/write primitive
  ☆29Updated 7 years ago
• Nerlant / SyscallDumper
  ☆19Updated 5 years ago
• NtRaiseHardError / NoREpls
  NoREpls - Application designed for the purposes of reverse engineering.
  ☆11Updated 6 years ago
• SVz / DiffAsm
  ☆13Updated 3 years ago
• almost-real / IDBG
  Allows you to add breakpoints from IDA (from the graph/text view) to WinDbg easily
  ☆14Updated 6 years ago
• michaeljgoodman / Dumpulator-IDA
  Currently proof-of-concept
  ☆16Updated 3 years ago
• VertexToEdge / WindowFunctionTracer
  Window Executable file Function tracer using Debugging API
  ☆44Updated 5 years ago
• ZehMatt / DrCodeCov
  Code Coverage client for DynamoRIO
  ☆12Updated 6 years ago
• DownWithUp / WHPHook
  Simple DLL and client app that work together to hook all the functions in WinHvPlatform.dll in order to provide logging and introspection…
  ☆15Updated 3 years ago
• Midi12 / QueryWorkingSetExample
  Just an example of a well-known technique to detect memory tampering via Windows Working Sets.
  ☆16Updated 3 years ago
• cow0o0 / VM
  vm -- code interpreter
  ☆26Updated 5 years ago
• Rupan / idapin
  A debugger backend for IDA Pro built on top of of Intel’s PIN framework
  ☆32Updated last year
• long123king / dk
  dk is a WinDbg extenion for dumping memory data in meaningful and organized ways, it is an enhancement of my previous tokenext project.
  ☆24Updated last year
• SinaKarvandi / Pinitor
  An API Monitor based on Instrumentation
  ☆43Updated 7 years ago
• allthingsida / idax
  idax: IDASDK extension libraries
  ☆19Updated 7 months ago
• ObstreperousMadcap / villainius--procedural
  A benign application used to demonstrate an EDR detection. This version is procedural (i.e., not object-oriented).
  ☆1Updated 2 years ago
• MortenSchenk / Privilege_Shellcode
  Kernel Shellcode to add all privileges in token
  ☆13Updated 8 years ago
• fvrmatteo / DeobfuscatorTest
  ☆24Updated 8 years ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year
• ajkhoury / Windbg2Struct
  Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure
  ☆35Updated 8 months ago
• secrary / findLoop
  findLoop - find possible encryption/decryption or compression/decompression code
  ☆26Updated 5 years ago
• star-sg / kernelcache_decryptor
  Kernel Cache Decryption for iOS
  ☆14Updated 3 years ago