A mini filter driver development framework allows you to develop minit filter driver with different features.
☆69Jan 25, 2026Updated 3 months ago
Alternatives and similar repositories for mini-filter-driver-framework
Users that are interested in mini-filter-driver-framework are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A Practical example of ELAM (Early Launch Anti-Malware)☆36Nov 12, 2021Updated 4 years ago
- File security filter driver SDK, implemented with a Windows file system filter driver framework. It allows you to implement file audit, …☆19Jan 25, 2026Updated 3 months ago
- DWM hooking-based screenshot tool☆34Sep 13, 2025Updated 7 months ago
- A simple POC to show how to chain multiple callbacks via tail calls to artificially construct a call stack☆100Dec 22, 2025Updated 4 months ago
- A small NtCreateUserProcess PoC that spawns a Command prompt.☆105Apr 11, 2026Updated 3 weeks ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- how to monitor the file activities on file system level, capture file open, create, overwrite, read, write, query file information, set f…☆23Jan 25, 2026Updated 3 months ago
- This is the AV ("protection solution") used for my windows 10 rootkit main project. this includes the installer stager program, a service…☆13May 2, 2024Updated 2 years ago
- A C# transparent file encryption example which was implemented with the Transparent Encryption File System Filter Driver SDK. The Transp…☆15Jan 25, 2026Updated 3 months ago
- WinDbg cheat sheet☆17May 10, 2023Updated 2 years ago
- A library that can map one IP-Port to another IP-Port.☆30Jun 11, 2019Updated 6 years ago
- Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich☆18Jun 29, 2024Updated last year
- very simple masm64 example to demonstrate how to compile MASM 64 bit using NMake/CMake☆14Aug 23, 2022Updated 3 years ago
- With the folder locker you can prevent your protected files being read,written,deleted, renamed, copied out of the protected folder, allo…☆12Jan 25, 2026Updated 3 months ago
- Helper functions for calculating the authenticode digest for a portable executable file☆21Apr 30, 2020Updated 6 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- anti cheat drv open source☆19Apr 18, 2024Updated 2 years ago
- A library for working with NTFS Reparse Points☆23Sep 6, 2019Updated 6 years ago
- An example driver for Windows that shows how to set-up some basic components of the Windows Filtering Platform☆205Jul 6, 2022Updated 3 years ago
- Record & prevent file deletion in kernel mode☆45Jul 22, 2020Updated 5 years ago
- EaseFilter File Security Filter Driver SDK. EaseFilter Comprehensive File Security SDK is a set of file system filter driver software dev…☆16Jan 25, 2026Updated 3 months ago
- An example of how a driver can register a handle creation callback.☆16Jun 12, 2023Updated 2 years ago
- silence file system monitoring components by hooking their minifilters☆62Jan 31, 2024Updated 2 years ago
- A File System Filter Driver for file I/O monitors, file access control, transparent file encryption.☆41Jan 25, 2026Updated 3 months ago
- An example code of CiGetCertPublisherName☆16Mar 24, 2022Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Provides a library used to read from files packaged in the WZ format which is specifically used by the official game service.☆10Feb 14, 2020Updated 6 years ago
- LPE / RCE Exploits for various vulnerable "Bloatware" products☆87Aug 5, 2025Updated 8 months ago
- 字符串混淆工具☆21Feb 15, 2019Updated 7 years ago
- ☆194May 1, 2023Updated 3 years ago
- A MacOS VFS isolation layer to redirect file I/O operations.☆30Jan 27, 2018Updated 8 years ago
- This repo contains EXPs about Vulnerable Windows Driver☆48May 22, 2024Updated last year
- Uses Threat-Intelligence ETW events to identify shellcode regions being hidden by fluctuating memory protections☆173May 17, 2023Updated 2 years ago
- A simple utility to mount / unmount VHD Images a lot faster than using Microsofts DiskPart utility.☆26Aug 16, 2020Updated 5 years ago
- KrabsETW provides a modern C++ wrapper and a .NET wrapper around the low-level ETW trace consumption functions.☆760Apr 14, 2026Updated 2 weeks ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ☆27Dec 29, 2021Updated 4 years ago
- ☆18Jun 30, 2017Updated 8 years ago
- A simple program to hook the current process to identify the manual syscall executions on windows☆268Nov 18, 2022Updated 3 years ago
- ☆26Apr 10, 2023Updated 3 years ago
- Playing with packets in C#☆15Aug 16, 2024Updated last year
- Virtual Trust Level (VTL 1) secure call tracing☆102Feb 12, 2026Updated 2 months ago
- BYOVD Technique Example using viragt64 driver☆82Jul 25, 2024Updated last year