Alternatives and similar repositories for TotalPE2

Users that are interested in TotalPE2 are comparing it to the libraries listed below

• zodiacon / TotalPE
  Yet another PE Viewer
  ☆140Updated 2 years ago
• zodiacon / ObjectExplorer
  Explore Kernel Objects on Windows
  ☆215Updated last month
• mrexodia / phnt-single-header
  Single header version of System Informer's phnt library.
  ☆215Updated last week
• Fyyre / DrvMon
  Advanced driver monitoring utility.
  ☆209Updated 2 years ago
• notscimmy / pplib
  Elevate a process to be a protected process
  ☆150Updated 5 years ago
• Fyyre / ntdll
  ntdll.h - compatible with MSVC 6.0, Intel C++ Compiler and MinGW. Serves as a complete replacement for Windows.h
  ☆137Updated 5 years ago
• thesecretclub / SandboxBootkit
  Bootkit for Windows Sandbox to disable DSE/PatchGuard.
  ☆279Updated 6 months ago
• HoShiMin / formatPE
  A bunch of parsers for PE and PDB formats in C++
  ☆243Updated 11 months ago
• hfiref0x / WubbabooMark
  Debugger Anti-Detection Benchmark
  ☆332Updated last year
• mrexodia / AppInitHook
  Global user-mode hooking framework, based on AppInit_DLLs. The goal is to allow you to rapidly develop hooks to inject in an arbitrary pr…
  ☆170Updated 3 years ago
• JustasMasiulis / wow64pp
  A modern c++ implementation of windows heavens gate
  ☆222Updated 4 years ago
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆245Updated 2 years ago
• diversenok / Suspending-Techniques
  Comparing, discussing, and bypassing various techniques for suspending and freezing processes on Windows.
  ☆124Updated 3 years ago
• Ido-Moshe-Github / CiDllDemo
  Use ci.dll API for validating Authenticode signature of files
  ☆138Updated 3 years ago
• zodiacon / windowskernelprogrammingbook2e
  Samples for the book Windows Kernel Programming, 2nd edition
  ☆332Updated 4 months ago
• DownWithUp / ALPC-Example
  An example of a client and server using Windows' ALPC functions to send and receive data.
  ☆96Updated 3 months ago
• VollRagm / PTView
  Browse Page Tables on Windows (Page Table Viewer)
  ☆198Updated 3 years ago
• ryan-weil / HideProcessHook
  DLL that hooks the NtQuerySystemInformation API and hides a process name
  ☆288Updated 2 years ago
• mandiant / STrace
  A DTrace on Windows Reimplementation
  ☆344Updated 3 months ago
• MiroKaku / Musa.Veil
  Collection of undocumented Windows API declarations.
  ☆314Updated last month
• utoni / PastDSE
  DSE bypass using a leaked cert and adjusting the current clock.
  ☆150Updated 2 years ago
• nelfo / Milfuscator
  x86 PE Mutator
  ☆216Updated 2 years ago
• Empyreal96 / nt-info-depot
  Webpage for a wealth of learning for many things Windows NT visit: https://empyreal96.github.io/nt-info-depot/index.html
  ☆100Updated 4 years ago
• repnz / apc-research
  APC Internals Research Code
  ☆166Updated 4 years ago
• kkent030315 / NoPatchGuardCallback
  x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code
  ☆202Updated 3 years ago
• zodiacon / QuickAsm
  Simple x86/x64 Assembler/Disassembler/Emulator
  ☆184Updated 9 months ago
• pathtofile / PPLRunner
  Run Processes as PPL with ELAM
  ☆161Updated 3 years ago
• lowleveldesign / comon
  A WinDbg extension to trace COM interactions
  ☆114Updated last year
• zodiacon / winnativeapibooksamples
  Samples from my book Windows Native API programming
  ☆66Updated last week
• adamhlt / Manual-DLL-Loader
  Custom LoadLibrary / GetProcAddress (x86 / x64) - Load DLL and retrieve functions manually
  ☆91Updated last year