Alternatives and similar repositories for AllTools

Users that are interested in AllTools are comparing it to the libraries listed below

• zodiacon / SystemExplorer
  Windows System Explorer
  ☆868Updated last year
• hfiref0x / WinObjEx64
  Windows Object Explorer 64-bit
  ☆1,811Updated 2 weeks ago
• zodiacon / ProcMonXv2
  Process Monitor X v2
  ☆630Updated last year
• winsiderss / phnt
  Native API header files for the System Informer project.
  ☆1,254Updated 3 months ago
• hasherezade / tiny_tracer
  A Pin Tool for tracing API calls etc
  ☆1,531Updated 3 months ago
• ExpLife0011 / awesome-windows-kernel-security-development
  windows kernel security development
  ☆2,037Updated 3 years ago
• hasherezade / pe-bear-releases
  PE-bear (builds only)
  ☆781Updated 2 years ago
• zodiacon / windowskernelprogrammingbook
  The Windows Kernel Programming book samples
  ☆640Updated last year
• horsicq / XPEViewer
  PE file viewer/editor for Windows, Linux and MacOS.
  ☆1,135Updated this week
• j00ru / windows-syscalls
  Windows System Call Tables (NT/2000/XP/2003/Vista/7/8/10/11)
  ☆2,406Updated 4 months ago
• microsoft / WinDbg-Samples
  Sample extensions, scripts, and API uses for WinDbg.
  ☆783Updated 3 weeks ago
• zodiacon / Win10SysProgBookSamples
  Windows 10 System Programming book samples
  ☆436Updated last year
• hasherezade / libpeconv
  A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl
  ☆1,278Updated 3 months ago
• Mattiwatti / PPLKiller
  Protected Processes Light Killer
  ☆952Updated 2 years ago
• silverf0x / RpcView
  RpcView is a free tool to explore and decompile Microsoft RPC interfaces
  ☆997Updated last year
• AxtMueller / Windows-Kernel-Explorer
  A free but powerful Windows kernel research tool.
  ☆2,587Updated 10 months ago
• petoolse / petools
  PE Tools - Portable executable (PE) manipulation toolkit
  ☆1,129Updated 7 years ago
• zodiacon / PEExplorerV2
  Portable Executable Explorer version 2
  ☆450Updated last year
• wbenny / injdrv
  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
  ☆1,246Updated last year
• JKornev / hidden
  🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc
  ☆1,934Updated 3 years ago
• m417z / winbindex
  An index of Windows binaries, including download links for executables such as exe, dll and sys files
  ☆698Updated this week
• hfiref0x / SyscallTables
  Windows NT Syscall tables
  ☆1,321Updated last week
• zodiacon / WindowsInternals
  Windows Internals Book 7th edition Tools
  ☆2,592Updated last year
• hasherezade / pe-sieve
  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…
  ☆3,426Updated this week
• googleprojectzero / sandbox-attacksurface-analysis-tools
  Set of tools to analyze Windows sandboxes for exposed attack surface.
  ☆2,223Updated 3 weeks ago
• hfiref0x / KDU
  Kernel Driver Utility
  ☆2,239Updated 3 weeks ago
• zodiacon / ProcMonX
  Extended Process Monitor-like tool based on Event Tracing for Windows
  ☆475Updated 5 years ago
• 4d61726b / VirtualKD-Redux
  VirtualKD-Redux - A revival and modernization of VirtualKD
  ☆925Updated last year
• zodiacon / windowskernelprogrammingbook2e
  Samples for the book Windows Kernel Programming, 2nd edition
  ☆358Updated last month
• everdox / InfinityHook
  Hook system calls, context switches, page faults and more.
  ☆2,583Updated 2 years ago