Alternatives and similar repositories for winapi-categories

Users that are interested in winapi-categories are comparing it to the libraries listed below

• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆152Updated last year
• zeze-zeze / ioctlance
  A tool that is used to hunt vulnerabilities in x64 WDM drivers
  ☆203Updated 3 months ago
• N0fix / rust-std-sigs
  ☆18Updated 11 months ago
• mar-ket-vector / VXpp
  VFGadget locator to facilitate Counterfeit Object-Oriented Programming (COOP) and Loop-Oriented Programming (LOP) attacks to bypass advan…
  ☆16Updated 3 months ago
• junron / ida2py
  An intuitive query API for IDA Pro
  ☆157Updated 3 months ago
• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆206Updated last month
• jk45054 / CTF-writeups
  Writeups for CTF challenges
  ☆31Updated last year
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆116Updated 11 months ago
• janoglezcampos / llvm-yx-callobfuscator
  LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.
  ☆290Updated last year
• struppigel / hedgehog-tools
  ☆115Updated last month
• Vector35 / scc
  ☆145Updated last month
• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆145Updated 10 months ago
• Bw3ll / ROP_ROCKET
  ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…
  ☆125Updated last week
• sha0coder / mwemu
  x86 malware emulator
  ☆222Updated this week
• N0fix / rustbinsign
  Rust symbol recovery tool
  ☆56Updated last month
• thalium / symless
  ☆199Updated last year
• mandiant / STrace
  A DTrace on Windows Reimplementation
  ☆348Updated 4 months ago
• Unprotect-Project / Unprotect_Submission
  Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…
  ☆165Updated 2 months ago
• hasherezade / thread_namecalling
  Process Injection using Thread Name
  ☆273Updated 2 months ago
• carlos-al / user-kernel-syscall-hook
  ☆90Updated last year
• floesen / KExecDD
  Admin to Kernel code execution using the KSecDD driver
  ☆251Updated last year
• paskalian / WID_LoadLibrary
  Reverse engineering winapi function loadlibrary.
  ☆202Updated 2 years ago
• junron / auto-enum
  IDA/Binary Ninja Plugin to automatically identify and set enums for standard functions
  ☆446Updated last month
• commial / ttd-bindings
  Bindings for Microsoft WinDBG TTD
  ☆225Updated last year
• Bw3ll / sharem
  SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also conta…
  ☆396Updated this week
• leandrofroes / gftrace
  A command line Windows API tracing tool for Golang binaries.
  ☆155Updated last year
• hasherezade / pe_unmapper
  Small tool to convert beteween the PE alignments (raw and virtual).
  ☆91Updated 2 years ago
• OALabs / research
  Research notes
  ☆126Updated 6 months ago
• alex-ilgayev / windbg-kernel-debug-cheat-sheet
  Helpful WinDBG command for kernel debugging
  ☆23Updated 4 years ago
• waleedassar / SimpleNTSyscallFuzzer
  ☆145Updated last year