Alternatives and similar repositories for xMalHunter

Users that are interested in xMalHunter are comparing it to the libraries listed below

• chkpizza / runtime
  VEH Redirect & VEH Debugger
  ☆23Updated 5 years ago
• MortenSchenk / tagWnd-Hardening-Bypass
  Bypass for the hardening against usage of tagWnd as a kernel read/write primitive
  ☆29Updated 8 years ago
• JKornev / cfgdump
  Windbg extension that allows you analyze Control Flow Guard map
  ☆36Updated 3 years ago
• VertexToEdge / WindowFunctionTracer
  Window Executable file Function tracer using Debugging API
  ☆44Updated 5 years ago
• bl4ckswan / anti-disassembly
  ☆20Updated 8 years ago
• SinaKarvandi / Pinitor
  An API Monitor based on Instrumentation
  ☆43Updated 7 years ago
• michaeljgoodman / Dumpulator-IDA
  Currently proof-of-concept
  ☆17Updated 3 years ago
• ohjeongwook / windbgtool
  Windbg Utility Tools based upon PyKD
  ☆42Updated 4 years ago
• zwclose / veeamon
  ☆16Updated 5 years ago
• saweol / vwaad
  IDA script for vmprotect Windows Api address decoder
  ☆51Updated 4 years ago
• waleedassar / CVE-2021-1656
  ☆23Updated 4 years ago
• ohjeongwook / REPack
  Reverse engineering toolkit for exploit/malware analysis
  ☆35Updated 5 years ago
• gabriellandau / CISpotter
  Code Integrity Violation Spotter
  ☆17Updated last year
• nccgroup / ICPin
  An Integrity-Check Monitoring Pintool
  ☆58Updated 4 years ago
• Nerlant / SyscallDumper
  ☆19Updated 6 years ago
• tsarpaul / RpcEnumIDA
  XPN's RpcEnum but based on IDA instead of Ghidra
  ☆21Updated 5 years ago
• bluefrostsecurity / Meltdown-KVA-Shadow-Leak
  ☆47Updated 5 years ago
• evandowning / windbg-trace
  Use WinDBG to trace the Windows API calls of any Portable Executable file
  ☆31Updated 8 years ago
• DownWithUp / WHPHook
  Simple DLL and client app that work together to hook all the functions in WinHvPlatform.dll in order to provide logging and introspection…
  ☆18Updated 3 years ago
• blaquee / SlothEmu
  unicorn emulator for x64dbg
  ☆34Updated 7 years ago
• secrary / findLoop
  findLoop - find possible encryption/decryption or compression/decompression code
  ☆26Updated 6 years ago
• SVz / DiffAsm
  ☆13Updated 4 years ago
• imugee / xdv
  XDV is disassembler or debugger that works based on the extension plugin.
  ☆56Updated 5 years ago
• rtyuiow / vmware-backdoor
  vmware-backdoor
  ☆33Updated 4 years ago
• segnolin / Vobfus
  virtualization obfuscator inspired by juhajong/vm-obfuscator
  ☆57Updated 5 years ago
• yuvatia / Win10GdiExploitation
  Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.
  ☆24Updated 7 years ago
• blaquee / APCHook
  hooking KiUserApcDispatcher
  ☆25Updated 8 years ago
• TalBlum / Anti-Disassembly
  A collection of anti disassembly techniques
  ☆19Updated 8 years ago
• redplait / armpatched
  clone of armadillo patched for windows
  ☆47Updated 9 months ago
• shamrockhoax / mazedecoder
  ☆28Updated 5 years ago