This project provides a collection of Microsoft Windows kernel structures, unions and enumerations. Most of them are not officially documented and cannot be found in Windows Driver Kit (WDK) headers. The target audience of this site is driver developers and kernel researches.
☆239Nov 2, 2025Updated 4 months ago
Alternatives and similar repositories for vergilius-project
Users that are interested in vergilius-project are comparing it to the libraries listed below
Sorting:
- Windows kernel PDB data parsed into YAML☆42Nov 2, 2025Updated 4 months ago
- A dll injector static library for Win x64 processes with handle elevation supported☆12Mar 28, 2021Updated 4 years ago
- Exports monitoring plugin for x64dbg☆22Mar 14, 2023Updated 3 years ago
- Examples of leaking Kernel Mode information from User Mode on Windows☆634Jul 7, 2017Updated 8 years ago
- This project provides a collection of Microsoft Windows kernel structures, unions and enumerations. Most of them are not officially docum…☆29Nov 2, 2025Updated 4 months ago
- A copy of my Mathematics and Computer Engineering B.Sc. thesis☆20Dec 8, 2020Updated 5 years ago
- Native API header files for the System Informer project.☆1,364May 25, 2025Updated 9 months ago
- Browse Page Tables on Windows (Page Table Viewer)☆236Apr 2, 2022Updated 3 years ago
- Time Travel Debugging IDA plugin☆596Jun 27, 2024Updated last year
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆66Apr 4, 2020Updated 5 years ago
- Lightweight WINAPI tracing with Pin☆27Aug 22, 2019Updated 6 years ago
- LLVM based devirtualization PoC’s.☆21Dec 11, 2021Updated 4 years ago
- Easy Anti PatchGuard☆223Apr 9, 2021Updated 4 years ago
- C++ Exceptions in Windows Drivers☆222Dec 21, 2020Updated 5 years ago
- VirtualKD-Redux - A revival and modernization of VirtualKD☆961Jun 23, 2024Updated last year
- CFB is a ProcMon-style tool designed to assist capturing IRPs sent to Windows drivers.☆332Mar 26, 2024Updated last year
- Bindings for Microsoft WinDBG TTD☆235Aug 5, 2023Updated 2 years ago
- Create and use macros in IDA's CLIs☆66Dec 26, 2025Updated 2 months ago
- Reverse engineered API for Microsoft's Time Travel Debugger☆36Apr 18, 2024Updated last year
- Monitoring and controlling kernel API calls with stealth hook using EPT☆1,362Jan 22, 2022Updated 4 years ago
- IDA plugin and loader for UEFI firmware analysis and reverse engineering automation☆1,083Feb 17, 2026Updated last month
- ☆19Jan 12, 2020Updated 6 years ago
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆146Feb 23, 2019Updated 7 years ago
- Hook system calls, context switches, page faults and more.☆2,639May 9, 2023Updated 2 years ago
- Bring Your Own Vulnerable Driver for PatchGuard & Driver Signature Enforcement☆15Apr 6, 2024Updated last year
- A POC for Windows Extension Host hooking☆24Jul 13, 2019Updated 6 years ago
- Hide codes/data in the kernel address space.☆188May 8, 2021Updated 4 years ago
- Analyze Windows x64 Kernel Memory Layout☆130Nov 19, 2020Updated 5 years ago
- Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.☆905Nov 21, 2019Updated 6 years ago
- Two PoC of accessing process virtual memory via NT Kernel☆22Jun 25, 2021Updated 4 years ago
- Simple Intel VT-x hypervisor☆360Dec 10, 2023Updated 2 years ago
- INF Studio for easier working with driver installation files☆39Nov 11, 2023Updated 2 years ago
- Bypasses for Windows kernel callbacks PatchGuard protection☆44Aug 15, 2021Updated 4 years ago
- Windows PDB parser for kernel-mode environment.☆110Jun 7, 2025Updated 9 months ago
- A library to develop kernel level Windows payloads for post HVCI era☆488May 18, 2021Updated 4 years ago
- HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate oper…☆380Jun 3, 2023Updated 2 years ago
- Detect strange memory regions and DLLs☆190Jan 20, 2022Updated 4 years ago
- Hook all callbacks which are registered with LdrRegisterDllNotification☆97Apr 3, 2025Updated 11 months ago
- A DTrace on Windows Reimplementation☆372Mar 12, 2026Updated last week