Dabudabot / injection-monitor
Kernel based monitor to check if specified process loads libraries only from allowed directories
☆11Updated 4 years ago
Alternatives and similar repositories for injection-monitor:
Users that are interested in injection-monitor are comparing it to the libraries listed below
- ☆11Updated 4 years ago
- ☆33Updated 4 years ago
- windows user mode network library☆10Updated 3 weeks ago
- ☆28Updated 4 years ago
- Open Source Libraries Collection☆24Updated 9 years ago
- This repository contains some tools that I have written in the past☆28Updated last year
- Simple utility to watch directory change notifications on a given path☆16Updated 7 years ago
- A Hobbyist Operating System based off the ReactOS/NT Kernel experimenting with OS Development.☆26Updated 12 years ago
- User-mode program parsing logs created by HyperPlatform☆18Updated 8 years ago
- Different ways to get the HDD Serial☆37Updated 6 years ago
- Static library and headers for linking your software with ntdll.dll☆32Updated 5 years ago
- User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.☆19Updated 9 years ago
- Decompile an x86 exe, and read PE infos.☆19Updated 6 years ago
- A tool to investigate the Windows device manager☆14Updated 6 years ago
- File downloader with SSL support and progress bar☆19Updated 7 years ago
- Phantom.Code extension providing Just-In-Time asm x64 compilation based on LLVM☆8Updated 2 years ago
- Example of real-time Windows ETW packet capture session☆52Updated 7 years ago
- just an lite AntiRootkit for interesting☆23Updated 9 years ago
- lz77win sources!lz77 is the compression software for the windows platform.☆24Updated 5 years ago
- Allows you to hook D3D dynamically - without having to research addresses or hook public API. Just grab the device!☆32Updated 10 years ago
- CMake module for building drivers with Windows Development Kit (WDK)☆9Updated last year
- Native Development Kit for Vista 64bit And Later, by me, Based on NDK Headers 1.0, by Alex Ionescu☆16Updated 9 years ago
- PE Library x86☆21Updated 5 years ago
- The internal Windows structures hack to create the in-process private ETW session☆13Updated 8 years ago
- ☆18Updated 5 years ago
- Automatically exported from code.google.com/p/windbgshark☆11Updated 9 years ago
- PowerShell interpreter for unmanaged (non CLI) C++ projects☆16Updated 7 years ago
- A program written in Qt 4.6 to detect UEFI malicious code statically.☆13Updated 11 years ago
- Static Library For Windows Drivers☆33Updated 3 weeks ago
- Windows NT port of 'Main is usually a function. So then when is it not?'☆25Updated last year