Alternatives and similar repositories for win32-appcontainer-tools

Users that are interested in win32-appcontainer-tools are comparing it to the libraries listed below

• DebugPrivilege / WindowsAP1
  Code samples that serve as references for Windows API functions
  ☆33Updated last year
• s4dbrd / ETWReader
  Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich
  ☆16Updated last year
• qtc-de / rpv-web
  rpv-web is a browser based frontend for the rpv library
  ☆26Updated 2 months ago
• nmantani / PS-MOTW
  PS-MOTW: PowerShell scripts to set / show / remove MOTW (Mark of the Web)
  ☆38Updated last year
• jonny-jhnson / MSFT_DriverBlockList
  Repository of Microsoft Driver Block Lists based off of OS-builds
  ☆39Updated last year
• pwndizzle / com-research
  Research into COM
  ☆19Updated 5 years ago
• jborean93 / PSDetour-Hooks
  Auditing Hooks for https://github.com/jborean93/PSDetour
  ☆13Updated 2 months ago
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆49Updated 6 months ago
• jdu2600 / Get-InjectedThreadEx
  Fork of Get-InjectedThread - https://gist.github.com/jaredcatkinson/23905d34537ce4b5b1818c3e6405c1d2
  ☆41Updated last year
• jborean93 / LocalKdc
  Info on how to use Kerberos KDC on a non-domain joined host
  ☆47Updated 11 months ago
• xforcered / AdvSim.Cryptography
  Simple and sane cryptographic wrapper library.
  ☆27Updated 2 years ago
• zodiacon / VerifierDLL
  Example of building an application verifer DLL
  ☆48Updated last year
• trailofbits / WinDbg-JS
  ☆25Updated last year
• m417z / thread-call-stack-scanner
  Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…
  ☆78Updated 3 weeks ago
• zodiacon / youtubecode
  Youtube channel sample code
  ☆52Updated last week
• Teach2Breach / NtCreateUserProcess_rs
  example using NtCreateUserProcess in rust
  ☆19Updated 5 months ago
• zodiacon / TraceConnections
  Simple example for getting started with eBPF for Windows
  ☆46Updated 4 months ago
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆32Updated last year
• yo-yo-yo-jbo / virtual_memory_known_dlls
  ☆19Updated 2 years ago
• Devolutions / pwsh-host-rs
  Rust PowerShell Hosting Library
  ☆16Updated 9 months ago
• lilkui / runasti
  Runs programs as TrustedInstaller
  ☆49Updated 6 years ago
• jonaslyk / temp
  ☆71Updated 2 years ago
• whokilleddb / ETWListicle
  List the ETW provider(s) in the registration table of a process.
  ☆59Updated last year
• Dump-GUY / Get-PDInvokeImports
  Get-PDInvokeImports is tool (PowerShell module) which is able to perform automatic detection of P/Invoke, Dynamic P/Invoke and D/Invoke u…
  ☆54Updated 3 years ago
• qtc-de / rpv
  rpv is a v library for analyzing RPC servers and interfaces on the Windows operating system
  ☆34Updated 2 months ago
• bluefrostsecurity / Windows-Drive-Remapping-EoP
  ☆31Updated last year
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆26Updated last year
• FuzzySecurity / BulkBindex
  Winbindex bot to pull in binaries for specific releases
  ☆48Updated last year
• CCob / ProvisionAppx
  ☆39Updated 2 years ago
• Slowerzs / CryptDecryptMemory
  ☆30Updated 7 months ago