Empyreal96 / nt-info-depotView external linksLinks
Webpage for a wealth of learning for many things Windows NT visit: https://empyreal96.github.io/nt-info-depot/index.html
☆122Jan 5, 2021Updated 5 years ago
Alternatives and similar repositories for nt-info-depot
Users that are interested in nt-info-depot are comparing it to the libraries listed below
Sorting:
- Persistence techniques for windows.☆19Jun 26, 2023Updated 2 years ago
- A repository for I/O ring demos, use cases and performance testing on Windows☆60Aug 2, 2022Updated 3 years ago
- ☆11Jun 24, 2024Updated last year
- Three different shellcode techniques on the Windows Kernel☆15Apr 8, 2025Updated 10 months ago
- break link between dll and it file on disk☆12Sep 2, 2024Updated last year
- Doom running in the NT kernel☆177May 27, 2023Updated 2 years ago
- Reverse engineered API for Microsoft's Time Travel Debugger☆36Apr 18, 2024Updated last year
- A library for intel VT-x hypervisor functionality supporting EPT shadowing.☆51Mar 11, 2021Updated 4 years ago
- Take back control of Windows Code Integrity, no exploits or patching required! Requires that you control your own Platform Key (PK).☆52Aug 22, 2022Updated 3 years ago
- A wrapper library around native windows sytem APIs☆10Dec 23, 2019Updated 6 years ago
- An utility to download PDB files associated with a Portable Executable (PE).☆15Feb 18, 2025Updated 11 months ago
- ☆30Dec 26, 2021Updated 4 years ago
- An application for muting your microphone until a set key, button, or combination of keys is held (push-to-talk).☆11Aug 17, 2020Updated 5 years ago
- This driver hooks a device object for ioctl and uses mdls to allocate physical pages and manually injects an entry into a process's page …☆15Feb 14, 2023Updated 3 years ago
- Porting Windows Dynamic Link Libraries to Linux☆19Jun 11, 2025Updated 8 months ago
- Hook all callbacks which are registered with LdrRegisterDllNotification☆96Apr 3, 2025Updated 10 months ago
- A Practical example of ELAM (Early Launch Anti-Malware)☆36Nov 12, 2021Updated 4 years ago
- silence file system monitoring components by hooking their minifilters☆59Jan 31, 2024Updated 2 years ago
- My research WIP bluepill hypervisor☆40Mar 15, 2023Updated 2 years ago
- Manjaro Data Donor - WIP☆15Jun 28, 2025Updated 7 months ago
- The program is intended for a dynamic unpacking of binders, crypters, packers and protectors☆11Sep 26, 2020Updated 5 years ago
- Some drivers I've written while solving exercises from Practical Reverse Engineering☆15Jan 9, 2022Updated 4 years ago
- Set of scripts for performance investigations on Windows.☆32Dec 17, 2025Updated 2 months ago
- Windows kernel driver that detects hypervisors by probing SIDT/LIDT edge cases, paging/TLB behaviors, privilege transitions, and timing e…☆36Dec 17, 2025Updated 2 months ago
- ☆17Apr 18, 2023Updated 2 years ago
- Code Integrity Violation Spotter☆17Jun 11, 2024Updated last year
- WinDbg installer/updater☆42Jul 11, 2023Updated 2 years ago
- Dangling COM Keys Finder☆17Nov 16, 2021Updated 4 years ago
- ☆16Oct 31, 2022Updated 3 years ago
- A tabbed UI for Microsoft's Hyper-V☆230Feb 8, 2026Updated last week
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆73Aug 11, 2023Updated 2 years ago
- Generate a PDB file given the old PDB file and an address mapping☆52Aug 3, 2025Updated 6 months ago
- Handling C++ & __try exceptions without the need of built-in handlers.☆77Aug 28, 2021Updated 4 years ago
- ☆38Nov 30, 2022Updated 3 years ago
- Bootkits☆19Sep 13, 2023Updated 2 years ago
- An offline documentation browser for Smali☆16Jan 10, 2020Updated 6 years ago
- A C++ syscall ID extractor for Windows. Developed, debugged and tested on 20H2.☆21May 25, 2021Updated 4 years ago
- ☆19Jun 20, 2019Updated 6 years ago
- hooking KiUserApcDispatcher☆25Apr 3, 2017Updated 8 years ago