MartinDrab / VrtuleTree
VrtuleTree is a tool that displays information about driver and device objects present in the system and relations between them. Its functionality is very similar to famous DeviceTree, however, VrtuleTree emhasises on stability and support of latest Windows versions
☆58Updated 3 years ago
Alternatives and similar repositories for VrtuleTree:
Users that are interested in VrtuleTree are comparing it to the libraries listed below
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆66Updated 4 years ago
- Advance LPC☆62Updated 7 years ago
- Analyze PatchGuard☆54Updated 6 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆53Updated 5 years ago
- An example of a client and server using Windows' ALPC functions to send and receive data.☆94Updated last month
- Library for kernel and user mode splicing for Windows (x86 and x64).☆63Updated 12 years ago
- View handles and object for each object type☆61Updated 5 years ago
- Standalone program to download PDB Symbol files for debugging without WDK☆76Updated 5 years ago
- ☆34Updated 4 years ago
- ☆27Updated 5 years ago
- An ark tool's driver☆40Updated 7 years ago
- ☆36Updated 5 years ago
- WinDbg debugger extension library providing various tools to analyse, dump and fix (restore) Microsoft Portable Executable files for both…☆82Updated 5 months ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆58Updated 8 years ago
- kernel-mode TDI client which can send and receive HTTP requests☆55Updated 6 years ago
- ☆38Updated 5 years ago
- Anti-Anti-VM solution via Windows Driver☆57Updated 6 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆35Updated 7 months ago
- Simple driver to register all available process, thread, image, Registry, and Object callbacks☆118Updated 7 years ago
- Analyze and attack windows applications using dll hijacking vulnerabilities☆56Updated 5 years ago
- POC of sysenter x64 LSTAR MSR hook☆38Updated 10 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆74Updated 14 years ago
- Various WinDbg extensions and scripts☆31Updated 6 years ago
- UNIPE - A small framwork to execute PE files with UniCorn☆45Updated 7 years ago
- Simple proof of concept code for injecting libraries on 64bit processes from a 32bit process☆95Updated 6 years ago
- This is just a x64dbg script system support.☆46Updated 2 years ago
- Helper utility for debugging windows PE/PE+ loader.☆51Updated 9 years ago
- a simple intel vt code both support x86 & x64. PatchGuard monitor.☆75Updated 3 years ago
- Kernel Pool Monitor☆121Updated 2 years ago
- Documenting system information classes and their uses☆50Updated 3 years ago