Alternatives and similar repositories for AllTools

Users that are interested in AllTools are comparing it to the libraries listed below

• zodiacon / SystemExplorer
  Windows System Explorer
  ☆851Updated 11 months ago
• hfiref0x / WinObjEx64
  Windows Object Explorer 64-bit
  ☆1,748Updated this week
• winsiderss / phnt
  Native API header files for the System Informer project.
  ☆1,168Updated 2 months ago
• hasherezade / tiny_tracer
  A Pin Tool for tracing API calls etc
  ☆1,424Updated 3 weeks ago
• zodiacon / ProcMonXv2
  Process Monitor X v2
  ☆613Updated last year
• ExpLife0011 / awesome-windows-kernel-security-development
  windows kernel security development
  ☆2,001Updated 2 years ago
• JKornev / hidden
  🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc
  ☆1,904Updated 2 years ago
• hasherezade / pe-bear-releases
  PE-bear (builds only)
  ☆778Updated last year
• zodiacon / windowskernelprogrammingbook
  The Windows Kernel Programming book samples
  ☆631Updated last year
• hasherezade / pe-sieve
  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…
  ☆3,309Updated 3 weeks ago
• microsoft / WinDbg-Samples
  Sample extensions, scripts, and API uses for WinDbg.
  ☆761Updated 2 weeks ago
• hfiref0x / SyscallTables
  Windows NT Syscall tables
  ☆1,279Updated 2 weeks ago
• zodiacon / Win10SysProgBookSamples
  Windows 10 System Programming book samples
  ☆426Updated 11 months ago
• mrexodia / TitanHide
  Hiding kernel-driver for x86/x64.
  ☆2,289Updated 2 months ago
• wbenny / injdrv
  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
  ☆1,217Updated last year
• hasherezade / libpeconv
  A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl
  ☆1,220Updated 2 months ago
• horsicq / XPEViewer
  PE file viewer/editor for Windows, Linux and MacOS.
  ☆1,080Updated this week
• Mattiwatti / PPLKiller
  Protected Processes Light Killer
  ☆926Updated 2 years ago
• hfiref0x / KDU
  Kernel Driver Utility
  ☆2,126Updated 6 months ago
• j00ru / windows-syscalls
  Windows System Call Tables (NT/2000/XP/2003/Vista/7/8/10/11)
  ☆2,316Updated 2 weeks ago
• AxtMueller / Windows-Kernel-Explorer
  A free but powerful Windows kernel research tool.
  ☆2,535Updated 7 months ago
• petoolse / petools
  PE Tools - Portable executable (PE) manipulation toolkit
  ☆1,097Updated 7 years ago
• zodiacon / WindowsInternals
  Windows Internals Book 7th edition Tools
  ☆2,513Updated last year
• silverf0x / RpcView
  RpcView is a free tool to explore and decompile Microsoft RPC interfaces
  ☆968Updated last year
• everdox / InfinityHook
  Hook system calls, context switches, page faults and more.
  ☆2,539Updated 2 years ago
• 4d61726b / VirtualKD-Redux
  VirtualKD-Redux - A revival and modernization of VirtualKD
  ☆892Updated 10 months ago
• HoShiMin / Kernel-Bridge
  Windows kernel hacking framework, driver template, hypervisor and API written on C++
  ☆1,721Updated last year
• NtQuery / Scylla
  Imports Reconstructor
  ☆1,212Updated 2 years ago
• hasherezade / pe_to_shellcode
  Converts PE into a shellcode
  ☆2,537Updated last year
• stephenfewer / ReflectiveDLLInjection
  Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loadi…
  ☆2,927Updated 2 years ago