Alternatives and similar repositories for ALPC-Example:

Users that are interested in ALPC-Example are comparing it to the libraries listed below

• wbenny / EtwConsumerNT
  Simple project that demonstrates how an ETW consumer can be created just by using NTDLL
  ☆139Updated 5 years ago
• yardenshafir / SymlinkCallback
  A driver that hooks C: volume using symbolic link callback to track all FS access to the volume
  ☆103Updated 4 years ago
• sgabe / SymlinkProtect
  File system minifilter driver for Windows to block symbolic link attacks.
  ☆50Updated 4 years ago
• MiroKaku / Nt-Modules
  Collect different versions of Crucial modules.
  ☆128Updated 6 months ago
• yardenshafir / InformationClasses
  Documenting system information classes and their uses
  ☆51Updated 3 years ago
• kkent030315 / NtSymbol
  Resolve DOS MZ executable symbols at runtime
  ☆93Updated 3 years ago
• Ido-Moshe-Github / CiDllDemo
  Use ci.dll API for validating Authenticode signature of files
  ☆136Updated 2 years ago
• fIappy / infhook19041
  ☆123Updated 4 years ago
• 0xcpu / WinAltSyscallHandler
  Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999
  ☆212Updated 5 years ago
• repnz / apc-research
  APC Internals Research Code
  ☆161Updated 4 years ago
• MiroKaku / WDKExt
  Windows Driver Kit Extesion Header (Undoc)
  ☆133Updated 3 years ago
• GoodstudyChina / APC-injection-x86-x64
  ☆64Updated 6 years ago
• gmh5225 / ntoskrnl_file_collection
  Collect various versions of ntoskrnl files
  ☆49Updated last year
• rbmm / INJECT
  D
  ☆40Updated 3 years ago
• MeeSong / KTL
  Windows Kernel Template Library
  ☆108Updated 2 years ago
• alal4465 / KernelMon
  A ProcMon-esque tool for monitoring Windows Kernel Drivers
  ☆54Updated 3 years ago
• OSRDrivers / kmexts
  Simple driver to register all available process, thread, image, Registry, and Object callbacks
  ☆117Updated 7 years ago
• markhc / windbg_to_c
  Translates WinDbg "dt" structure dump to a C structure
  ☆127Updated 8 years ago
• Microwave89 / createuserprocess
  Three Tiny Examples of Directly Using Vista's NtCreateUserProcess
  ☆85Updated 9 years ago
• secrary / Hooking-via-InstrumentationCallback
  codes for my blog post: https://secrary.com/Random/InstrumentationCallback/
  ☆172Updated 7 years ago
• ajkhoury / Errata1337
  ☆67Updated 4 years ago
• KelvinMsft / NoTruth
  ☆93Updated 7 years ago
• avalon1610 / ALPC
  Advance LPC
  ☆60Updated 7 years ago
• not-wlan / instrumentation-callbacks
  based on https://github.com/secrary/Hooking-via-InstrumentationCallback
  ☆68Updated 5 years ago
• GetRektBoy724 / KPDB
  Windows PDB parser for kernel-mode environment.
  ☆93Updated 2 years ago
• DragonQuestHero / Win32KernelSTL
  Using C++ STL on Windows kernle development
  ☆88Updated 5 years ago
• Biswa96 / PDBDownloader
  Standalone program to download PDB Symbol files for debugging without WDK
  ☆75Updated 5 years ago
• mike1k / pepp
  C++ library for parsing and manipulating PE files statically and dynamically.
  ☆87Updated last year
• 9176324 / Daat
  a simple intel vt code both support x86 & x64. PatchGuard monitor.
  ☆75Updated 3 years ago