Empyreal96 / nt-info-depot

Related projects ⓘ

Alternatives and complementary repositories for nt-info-depot

• m417z / ntdoc
  Native API online documentation, based on the System Informer (formerly Process Hacker) phnt headers
  ☆163Updated last week
• zodiacon / TotalPE2
  PE Viewer
  ☆152Updated 3 weeks ago
• zodiacon / ObjectExplorer
  Explore Kernel Objects on Windows
  ☆200Updated 10 months ago
• m417z / winapiexec
  A small tool that allows to run WinAPI functions through command line parameters
  ☆176Updated 2 years ago
• therealdreg / masm32-kernel-programming
  masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)
  ☆115Updated last year
• mrexodia / phnt-single-header
  Single header version of System Informer's phnt library.
  ☆186Updated last week
• ElliotKillick / windows-vs-linux-loader-architecture
  Side-by-side comparison of the Windows and Linux (GNU) Loaders
  ☆289Updated 2 months ago
• x86matthew / DOSVisor
  x86 Real-Mode MS-DOS Emulator using Windows Hypervisor Platform
  ☆98Updated 4 months ago
• serge1 / COFFI
  A header-only C++ library for accessing files in COFF binary format. (Including Windows PE/PE+ formats)
  ☆188Updated last week
• behnamshamshirsaz / CrackMaster
  x86/x64 Ring 0/-2 System Freezer/Debugger
  ☆110Updated last month
• m417z / global-inject-demo
  A global injection and hooking example
  ☆125Updated last year
• zodiacon / TotalPE
  Yet another PE Viewer
  ☆138Updated last year
• NSG650 / NtDOOM
  Doom running in the NT kernel
  ☆162Updated last year
• 0xf005ba11 / vmplex-ws
  A tabbed UI for Microsoft's Hyper-V
  ☆203Updated 3 months ago
• mandiant / STrace
  A DTrace on Windows Reimplementation
  ☆328Updated 3 weeks ago
• zodiacon / windowskernelprogrammingbook2e
  Samples for the book Windows Kernel Programming, 2nd edition
  ☆294Updated this week
• momo5502 / emulator
  🪅 Windows User Space Emulator
  ☆389Updated this week
• MiroKaku / Musa.Veil
  Collection of undocumented Windows API declarations.
  ☆290Updated 3 weeks ago
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆79Updated last year
• Fyyre / DrvMon
  Advanced driver monitoring utility.
  ☆201Updated 2 years ago
• microsoft / wdkmetadata
  Tooling to generate metadata for Win32 APIs in the Windows Driver Kit (WDK).
  ☆96Updated this week
• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆148Updated 10 months ago
• zodiacon / QuickAsm
  Simple x86/x64 Assembler/Disassembler/Emulator
  ☆170Updated 3 months ago
• je5442804 / CreateProcessInternalW-Full
  Reimplement CreateProcessInternalW via Windows 10 20H1+/Windows 11 Base on NtCreateUserProcess-Post
  ☆47Updated 2 months ago
• lowleveldesign / comon
  A WinDbg extension to trace COM interactions
  ☆110Updated 9 months ago
• thesecretclub / SandboxBootkit
  Bootkit for Windows Sandbox to disable DSE/PatchGuard.
  ☆261Updated last month
• diversenok / Suspending-Techniques
  Comparing, discussing, and bypassing various techniques for suspending and freezing processes on Windows.
  ☆114Updated 3 years ago
• m417z / x64dbg-xfg-marker
  An x64dbg plugin which marks XFG call signatures as data
  ☆72Updated last year
• Xyrem / HyperDeceit
  HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate oper…
  ☆360Updated last year
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆239Updated 2 years ago