Alternatives and similar repositories for ZMIST:

Users that are interested in ZMIST are comparing it to the libraries listed below

• h4xu3lyn / NTLib
  Headers for linking your software with ntdll.dll
  ☆15Updated 4 years ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year
• hasherezade / paramkit
  A small library helping to parse commandline parameters (for C/C++)
  ☆57Updated last year
• yardenshafir / CallbackObjectAnalyzer
  Dumps information about all the callback objects found in a dump file and the functions registered for them
  ☆35Updated 4 years ago
• hfiref0x / Misc
  Miscellaneous Code and Docs
  ☆81Updated last year
• 0vercl0k / sic
  Enumerate user mode shared memory mappings on Windows.
  ☆121Updated 4 years ago
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆83Updated 4 years ago
• kkent030315 / NtSymbol
  Resolve DOS MZ executable symbols at runtime
  ☆95Updated 3 years ago
• hMihaiDavid / addscn
  Add an empty section to a PE file
  ☆51Updated 7 years ago
• Jb05s / Exploit-Dev-C
  ☆22Updated 4 years ago
• andrew-boyarshin / LoaderWatch
  Windows 10 PE image loader (LDR) NTDLL component toolbox
  ☆49Updated 5 years ago
• redplait / armpatched
  clone of armadillo patched for windows
  ☆47Updated 6 months ago
• hMihaiDavid / hooks
  A DLL that performs IAT hooking
  ☆27Updated 6 years ago
• arizvisa / ndk
  A local copy of Alex Ionescu's seemingly abandoned native-nt-toolkit project containing knowledge inherited from the ReactOS project.
  ☆54Updated 5 years ago
• hasherezade / libpeconv_tpl
  A ready-made template for a project based on libpeconv.
  ☆48Updated 2 months ago
• codingtest / r0ak
  r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
  ☆27Updated 6 years ago
• nlog2n / x86obfuscator
  a binary x86win32 code obfuscator using virtual machine
  ☆32Updated 8 years ago
• bi-zone / rdtsc-checkvirt-poc
  Virtualization detection through speculative execution PoCs and papers
  ☆68Updated 6 years ago
• JKornev / NTlib
  Static library and headers for linking your software with ntdll.dll
  ☆32Updated 5 years ago
• thalium / WinDbgFastObj
  ☆21Updated 3 years ago
• hasherezade / pe_utils
  A set of small utilities, helpers for PIN tracers
  ☆33Updated last year
• OsandaMalith / ApiMon
  A simple API monitor for Windbg
  ☆63Updated 8 years ago
• mrfearless / PE-Library-x86
  PE Library x86
  ☆21Updated 5 years ago
• Microwave89 / createuserprocess
  Three Tiny Examples of Directly Using Vista's NtCreateUserProcess
  ☆87Updated 9 years ago
• BreakingMalwareResearch / CFGExceptions
  Adding exceptions to Microsoft's Control Flow Guard (CFG)
  ☆58Updated 8 years ago
• swwwolf / obderef
  Decrement Windows Kernel for fun and profit
  ☆38Updated 7 years ago
• therealdreg / Win.Cerdalux
  WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs
  ☆18Updated last year
• therealdreg / phook
  Full DLL Hooking, phrack 65
  ☆46Updated last year
• scmanjarrez / pymetangine
  A python metamorphic engine for PE/PE+ files.
  ☆15Updated 2 years ago
• VergiliusProject / kernels-data
  Windows kernel PDB data parsed into YAML
  ☆36Updated 6 months ago