Windows NT port of 'Main is usually a function. So then when is it not?'
☆27Mar 11, 2024Updated last year
Alternatives and similar repositories for WinMain-is-usually-a-function
Users that are interested in WinMain-is-usually-a-function are comparing it to the libraries listed below
Sorting:
- Crash Windows 10 up to RS2 from an unprivileged process☆42Dec 10, 2017Updated 8 years ago
- POC for a race condition exploit using directory junctions in Windows☆17Apr 26, 2020Updated 5 years ago
- automates exploits using ROP chains, using ntdll-scraper☆16May 26, 2022Updated 3 years ago
- User-mode part of Zerokit platform☆22Mar 30, 2019Updated 6 years ago
- HAXM hypervisor client☆18Nov 30, 2018Updated 7 years ago
- HTTP/HTTPS/DNS inspector (windows driver)☆27Feb 20, 2019Updated 7 years ago
- RemDisk is a software capable of creating and mounting RAM-based or file-based, plain or encrypted, virtual disks☆45Aug 20, 2019Updated 6 years ago
- Send SECURE_ERASE_UNIT and SANITIZE_DEVICE ATA command to hard disks☆50Mar 23, 2014Updated 11 years ago
- Open-source SMB filesystem driver for Windows☆49Oct 27, 2019Updated 6 years ago
- PoC code for CVE-2018-15499 (exploit race condition for BSoD)☆11Aug 23, 2018Updated 7 years ago
- Simple command line tool to enumerate loaded WFP callout drivers☆10Feb 2, 2024Updated 2 years ago
- A POC for Windows Extension Host hooking☆24Jul 13, 2019Updated 6 years ago
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆146Feb 23, 2019Updated 7 years ago
- Inject dll to process in driver☆10Aug 27, 2024Updated last year
- RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the …☆10Jul 1, 2015Updated 10 years ago
- Utility for dumping all the information Capstone has on given instructions.☆23Oct 1, 2021Updated 4 years ago
- Zerokit shared code☆17Mar 28, 2019Updated 6 years ago
- WhoCalls can query a directory of files, find the binaries, and search for a user specified Win API import. It and works with both 32-bit…☆18Jul 2, 2022Updated 3 years ago
- Windows Hypervisor Platform client☆31Jun 13, 2018Updated 7 years ago
- Miscellaneous Code and Docs☆83Jul 12, 2025Updated 7 months ago
- MBR manipulation tool☆18Jan 13, 2014Updated 12 years ago
- This driver hooks a device object for ioctl and uses mdls to allocate physical pages and manually injects an entry into a process's page …☆15Feb 14, 2023Updated 3 years ago
- Analysis and Modification Tool for Executables☆17Mar 28, 2019Updated 6 years ago
- Demos presented on Hackerfest 2015☆14Nov 9, 2015Updated 10 years ago
- ☆16Dec 14, 2017Updated 8 years ago
- This is a pintool that can analyze target dynamically and output code blocks and "key frames".☆14Mar 26, 2015Updated 10 years ago
- ☆51Jan 9, 2021Updated 5 years ago
- ☆33Dec 22, 2020Updated 5 years ago
- silence file system monitoring components by hooking their minifilters☆60Jan 31, 2024Updated 2 years ago
- A simple kernel mode driver that hooks some values at the KUSER_SHARED_DATA structure.☆27Jan 7, 2020Updated 6 years ago
- ☆29Sep 18, 2015Updated 10 years ago
- Detect the SCI in windows.☆11Mar 23, 2017Updated 8 years ago
- ☆13Nov 1, 2017Updated 8 years ago
- WinPools is an example of how Windows kernel big pool addresses can be leaking using NtQuerySystemInformation☆15Jun 23, 2019Updated 6 years ago
- x64dbg plugin template for visual studio☆21Jan 24, 2019Updated 7 years ago
- Escalation of privilege exploit for Dell BIOS flasher (Flash64W) (2017)☆13Dec 7, 2020Updated 5 years ago
- ☆16Sep 7, 2017Updated 8 years ago
- An API Monitor based on Instrumentation☆43Dec 19, 2017Updated 8 years ago
- research revolving the windows filtering platform callout mechanism☆39May 26, 2024Updated last year