Alternatives and similar repositories for TotalPE2

Users that are interested in TotalPE2 are comparing it to the libraries listed below

• zodiacon / ObjectExplorer
  Explore Kernel Objects on Windows
  ☆238Updated 7 months ago
• mrexodia / phnt-single-header
  Single header version of System Informer's phnt library.
  ☆233Updated last week
• HoShiMin / formatPE
  A bunch of parsers for PE and PDB formats in C++
  ☆258Updated last year
• zodiacon / WinSpy
  Enhanced version of the classic Spy++ tool
  ☆214Updated last month
• diversenok / Suspending-Techniques
  Comparing, discussing, and bypassing various techniques for suspending and freezing processes on Windows.
  ☆128Updated 4 years ago
• m417z / global-inject-demo
  A global injection and hooking example
  ☆162Updated 2 years ago
• zodiacon / TotalPE
  Yet another PE Viewer
  ☆142Updated 2 years ago
• zodiacon / windowskernelprogrammingbook2e
  Samples for the book Windows Kernel Programming, 2nd edition
  ☆363Updated 3 months ago
• EaseFilterSDK / mini-filter-driver-framework
  A mini filter driver development framework allows you to develop minit filter driver with different features.
  ☆63Updated 3 weeks ago
• MiroKaku / Musa.Veil
  Collection of undocumented Windows API declarations.
  ☆332Updated last month
• ajkhoury / ApiSet
  API Set resolver for Windows
  ☆140Updated last year
• Fyyre / ntdll
  ntdll.h - compatible with MSVC 6.0, Intel C++ Compiler and MinGW. Serves as a complete replacement for Windows.h
  ☆147Updated 6 years ago
• Fyyre / DrvMon
  Advanced driver monitoring utility.
  ☆217Updated 3 years ago
• adamhlt / Manual-DLL-Loader
  Custom LoadLibrary / GetProcAddress (x86 / x64) - Load DLL and retrieve functions manually
  ☆95Updated 2 years ago
• zodiacon / WFPExplorer
  Windows Filtering Platform Explorer
  ☆302Updated 2 months ago
• hfiref0x / AuthHashCalc
  Authenticode Hash Calculator for PE32/PE32+ files
  ☆117Updated 4 months ago
• m417z / ntdoc
  Native API online documentation, based on the System Informer (formerly Process Hacker) phnt headers
  ☆334Updated last week
• Ido-Moshe-Github / CiDllDemo
  Use ci.dll API for validating Authenticode signature of files
  ☆159Updated 3 years ago
• thesecretclub / SandboxBootkit
  Bootkit for Windows Sandbox to disable DSE/PatchGuard.
  ☆308Updated last year
• zodiacon / TotalSystem
  View Windows System in action
  ☆39Updated 3 months ago
• notscimmy / pplib
  Elevate a process to be a protected process
  ☆150Updated 6 years ago
• ntoskrnl7 / crtsys
  C/C++ Runtime library for system file (Windows Kernel Driver) - Supports Microsoft STL
  ☆188Updated 3 years ago
• d35ha / xLogger
  Simple windows API logger
  ☆109Updated 6 years ago
• m417z / Multiline-Ultimate-Assembler
  A multiline (and ultimate) assembler (and disassembler) plugin for x64dbg and OllyDbg. A perfect tool for modifying and extending a compi…
  ☆156Updated 10 months ago
• zodiacon / QuickAsm
  Simple x86/x64 Assembler/Disassembler/Emulator
  ☆186Updated last year
• VollRagm / PTView
  Browse Page Tables on Windows (Page Table Viewer)
  ☆221Updated 3 years ago
• kkent030315 / anycall
  x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration
  ☆363Updated 3 years ago
• utoni / PastDSE
  DSE bypass using a leaked cert and adjusting the current clock.
  ☆151Updated last month
• polycone / pe-loader
  A Windows PE format file loader
  ☆148Updated 7 years ago
• DownWithUp / ALPC-Example
  An example of a client and server using Windows' ALPC functions to send and receive data.
  ☆107Updated 9 months ago