alal4465 / KernelMonLinks
A ProcMon-esque tool for monitoring Windows Kernel Drivers
☆58Updated 4 years ago
Alternatives and similar repositories for KernelMon
Users that are interested in KernelMon are comparing it to the libraries listed below
Sorting:
- ☆99Updated 7 years ago
- first commit☆62Updated 4 years ago
- This project migrated to https://github.com/backengineering/llvm-msvc☆83Updated last year
- ☆125Updated 5 years ago
- Ghetto user mode emulation of Windows kernel drivers.☆145Updated 10 months ago
- Tutorial & a blog post that demonstrate how to code a Windows driver to inject a custom DLL into all running processes. I coded it from s…☆138Updated 4 years ago
- x64 syscall caller in C++.☆89Updated 7 years ago
- A general solution to simulate execution of virtualized instructions (vmprotect/themida, etc.).☆75Updated 3 years ago
- ☆48Updated 4 years ago
- a simple intel vt code both support x86 & x64. PatchGuard monitor.☆76Updated 3 years ago
- Example Windows Kernel-mode Driver which enumerates running processes.☆57Updated 3 years ago
- Collect various versions of ntoskrnl files☆55Updated last year
- Windows PDB parser for kernel-mode environment.☆100Updated 2 months ago
- VMP Mutation API Fix☆41Updated 3 years ago
- a monitoring windows driver calls kernel api tools☆115Updated last year
- Collect different versions of Crucial modules.☆144Updated last year
- C++ library for parsing and manipulating PE files statically and dynamically.☆88Updated last year
- An example of a client and server using Windows' ALPC functions to send and receive data.☆101Updated 7 months ago
- fix vmprotect import function used unicorn-engine.☆96Updated 2 years ago
- windows kernel pagehook☆40Updated 2 years ago
- PE-Dump-Fixer☆110Updated 5 years ago
- Using C++ STL on Windows kernle development☆90Updated 6 years ago
- core of pkn game hacking project. Including mainly for process management, memory management, and DLL injecttion. Also PE analysis, windo…☆66Updated 6 years ago
- ☆50Updated 2 years ago
- Handling C++ & __try exceptions without the need of built-in handlers.☆71Updated 3 years ago
- A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe☆72Updated 2 years ago
- based on https://github.com/secrary/Hooking-via-InstrumentationCallback☆71Updated 5 years ago
- Windows Driver Kit Extesion Header (Undoc)☆136Updated 3 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆118Updated 3 years ago
- Kernel-Mode extended version of https://github.com/microsoft/Detours☆174Updated 2 months ago