MartinDrab / VrtuleTree
VrtuleTree is a tool that displays information about driver and device objects present in the system and relations between them. Its functionality is very similar to famous DeviceTree, however, VrtuleTree emhasises on stability and support of latest Windows versions
☆59Updated 4 years ago
Alternatives and similar repositories for VrtuleTree
Users that are interested in VrtuleTree are comparing it to the libraries listed below
Sorting:
- Library for kernel and user mode splicing for Windows (x86 and x64).☆63Updated 12 years ago
- Advance LPC☆63Updated 8 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆67Updated 5 years ago
- Analyze PatchGuard☆58Updated 6 years ago
- WinDbg debugger extension library providing various tools to analyse, dump and fix (restore) Microsoft Portable Executable files for both…☆82Updated 8 months ago
- Simple driver to register all available process, thread, image, Registry, and Object callbacks☆121Updated 7 years ago
- c++ implementation of windows heavens gate☆68Updated 4 years ago
- An example of a client and server using Windows' ALPC functions to send and receive data.☆96Updated 3 months ago
- A software driver that lets you log kernel-mode debug output into a file on Windows.☆104Updated 6 years ago
- ntdll.h - compatible with MSVC 6.0, Intel C++ Compiler and MinGW. Serves as a complete replacement for Windows.h☆137Updated 5 years ago
- Three Tiny Examples of Directly Using Vista's NtCreateUserProcess☆87Updated 9 years ago
- Example of real-time Windows ETW packet capture session☆53Updated 7 years ago
- Implementation of a dispatcher for Structured Exceptions inside a Vectored Exception Handler☆41Updated 5 years ago
- This program can retrieve signature information from PE files which signed by one or more certificates on Windows. Supporting multi-signe…☆97Updated 2 years ago
- Standalone program to download PDB Symbol files for debugging without WDK☆76Updated 5 years ago
- A driver to intercept low level windows events☆63Updated 5 years ago
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆140Updated 6 years ago
- Kernel Pool Monitor☆123Updated 3 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆35Updated 10 months ago
- a frame of amd-v svm nest☆53Updated 5 years ago
- ☆38Updated 6 years ago
- View handles and object for each object type☆64Updated 5 years ago
- Windows_OS_Internals_Curriculum_Resource_Kit-ACADEMIC☆24Updated 6 years ago
- Documenting system information classes and their uses☆50Updated 3 years ago
- UNIPE - A small framwork to execute PE files with UniCorn☆46Updated 7 years ago
- ☆37Updated 5 years ago
- Trace events in real time sessions☆45Updated last year
- An ark tool's driver☆40Updated 8 years ago
- kernel-mode TDI client which can send and receive HTTP requests☆55Updated 6 years ago
- POC of sysenter x64 LSTAR MSR hook☆39Updated 10 years ago