Alternatives and similar repositories for ntoskrnl

Users that are interested in ntoskrnl are comparing it to the libraries listed below

• IcEy-999 / Ntoskrnl_Viewer
  可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。
  ☆110Updated 3 years ago
• MapleSwan / PageTableHook
  ☆138Updated 2 years ago
• ilovecsad / veh_hide_memory
  ☆70Updated 3 years ago
• DragonQuestHero / DwmDraw
  不使用3环挂钩进行DWM桌面绘制
  ☆79Updated 3 years ago
• cs1ime / sehcall
  Windows X64 mode use seh in manual mapped dll or manual mapped sys
  ☆75Updated 2 years ago
• Oxygen1a1 / DrvMon
  a monitoring windows driver calls kernel api tools
  ☆121Updated last year
• DragonQuestHero / WindowsSyscallsEx
  Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查
  ☆97Updated 2 years ago
• ilovecsad / Ark
  ☆80Updated 3 years ago
• zhuhuibeishadiao / WskHttp
  Windows kernel drivers simple HTTP library for modern C++
  ☆42Updated 7 years ago
• 2367765883 / hidedriver-normal
  ☆38Updated last year
• TimelifeCzy / kHypervisorBasic
  VT Hook
  ☆47Updated last year
• DearXiaoGui / InfinityHookPro-main
  ☆53Updated 2 years ago
• gn277 / ExceptionByInstCallback
  ☆46Updated last year
• KelvinMsft / PerfMon
  first commit
  ☆62Updated 4 years ago
• kanren3 / libalpc
  ☆18Updated 11 months ago
• cs1ime / DICHook
  Hook NtDeviceIoControlFile with PatchGuard
  ☆108Updated 3 years ago
• OMRI-FRX / LMalz
  硬件虚拟化
  ☆50Updated last month
• Oxygen1a1 / kcrypt
  an encryption library designed for Windows kernel and driver programming
  ☆118Updated 2 years ago
• huoji120 / MakeInfinityHookGreatAgain
  让Etwhook再次伟大! Make InfinityHook Great Again!
  ☆143Updated 4 years ago
• ThomasonZhao / InfinityHookProMax
  InfinityHookProMax: Make InfinityHook great great again
  ☆46Updated 2 years ago
• DragonQuestHero / WindowsKernelPrivateSymbolsDump
  Win7内核私有符号结构转储
  ☆70Updated 4 years ago
• fly55555 / ntoskrnl
  大部分常见windows内核文件合集 下方链接里有更多更全面的
  ☆15Updated last year
• huoji120 / goodeye
  https://githacks.org/Shawick/goodeye.git
  ☆50Updated 5 years ago
• cxy128 / PTE-Hook
  PTE hook
  ☆28Updated last year
• Air14 / SymbolicAccess
  Static user/kernel mode library that allows access to all functions and global variables by extracting offsets from the PDB
  ☆105Updated 4 months ago
• gmh5225 / ntoskrnl_file_collection
  Collect various versions of ntoskrnl files
  ☆57Updated last year
• Kwansy98 / EasyPdb
  A very simple C++ library for download pdb, get rva of function, global variable and offset from struct.
  ☆150Updated last year
• qq1045551070 / VtToMe
  之前学习X64VT写的代码，很多坑，但是大体的逻辑还是完整的。现发出来给更多想学VT的人参考...
  ☆70Updated 4 years ago
• zhutingxf / InfinityHookPro
  InfinityHook 支持Win7 到 Win11 最新版本，虚拟机环境及物理机环境
  ☆90Updated 11 months ago
• LYingSiMon / InfinityHookProEx
  This is an extension to InfinityHookPro to support physical machine environments. (Win7 -> Win11 latest)
  ☆34Updated 2 years ago