basil00/WinDivertTool external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

basil00/WinDivertTool

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/basil00/WinDivertTool)

Close

basil00 / WinDivertToolView on GitHubMore

• External links
• Readme badge

WinDivert detection and management

☆86Oct 22, 2019Updated 6 years ago

Alternatives and similar repositories for WinDivertTool

Users that are interested in WinDivertTool are comparing it to the libraries listed below

• sbilly / go-windivert2

  View on GitHub
  Go bindings for WinDivert 2.x
  ☆28Jan 4, 2025Updated last year
• TechnikEmpire / WinDivertSharp

  View on GitHub
  A minimal .NET binding over WinDivert
  ☆115Apr 24, 2022Updated 3 years ago
• michaeljgoodman / Dumpulator-IDA

  View on GitHub
  Currently proof-of-concept
  ☆17Dec 17, 2021Updated 4 years ago
• basil00 / WinDivert

  View on GitHub
  WinDivert: Windows Packet Divert
  ☆3,105Mar 15, 2023Updated 3 years ago
• 0mWindyBug / RansomGuard

  View on GitHub
  anti-ransomware file-system filter
  ☆69Sep 3, 2024Updated last year
• 0xDivyanshu-new / CVE-2023-29360

  View on GitHub
  POC for CVE-2023-29360
  ☆12Aug 31, 2024Updated last year
• FalconForceTeam / bof-winrm-plugin-jump

  View on GitHub
  ☆33Jan 23, 2025Updated last year
• senzee1984 / EDRPrison

  View on GitHub
  Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry
  ☆460Aug 2, 2024Updated last year
• batcain / idapython_scripts

  View on GitHub
  ☆15Jul 13, 2023Updated 2 years ago
• bartblaze / DotNet-MetaData

  View on GitHub
  Identifies metadata of .NET binary files.
  ☆21Apr 3, 2024Updated last year
• jonny-jhnson / ProcCallback

  View on GitHub
  An example of how a driver can register a handle creation callback.
  ☆16Jun 12, 2023Updated 2 years ago
• OSRDrivers / deleteex

  View on GitHub
  Demonstrate the new FileDispositionInfoEx behavior
  ☆15Nov 6, 2017Updated 8 years ago
• williamfhe / godivert

  View on GitHub
  Bindings for WinDivert in Go
  ☆63Dec 29, 2018Updated 7 years ago
• akkuman / gSigFlip

  View on GitHub
  A SigFlip implement in golang
  ☆51Jan 5, 2022Updated 4 years ago
• kkent030315 / CiGetCertPublisherName

  View on GitHub
  An example code of CiGetCertPublisherName
  ☆16Mar 24, 2022Updated 3 years ago
• Primusinterp / PrimusC2

  View on GitHub
  A C2 framework built for my bachelors thesis
  ☆57Jan 14, 2026Updated 2 months ago
• TechnikEmpire / CitadelCore.Windows

  View on GitHub
  Citadel Core platform-specific implementation for Windows
  ☆25Mar 8, 2022Updated 4 years ago
• Fare9 / elfparser_e

  View on GitHub
  Example of an ELF parser to learn about the ELF format
  ☆11Oct 6, 2024Updated last year
• I3IT / Detect.Remote.ShadowSnapshot.Dump

  View on GitHub
  Detect Remote Local Credentials Dumping using a Shadow Snapshot
  ☆32Jan 27, 2025Updated last year
• wiresock / WFPCalloutExplorer

  View on GitHub
  Simple command line tool to enumerate loaded WFP callout drivers
  ☆10Feb 2, 2024Updated 2 years ago
• 2igosha / sunburst_dga

  View on GitHub
  ☆22Dec 22, 2020Updated 5 years ago
• naksyn / Embedder

  View on GitHub
  Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies
  ☆123May 29, 2024Updated last year
• dyhkwong / SocksRedirector

  View on GitHub
  wfp2socks
  ☆11Sep 11, 2025Updated 6 months ago
• zimnyaa / smbsocks

  View on GitHub
  A simple rpc2socks alternative in pure Go.
  ☆31Jul 8, 2024Updated last year
• hasherezade / tag_converter

  View on GitHub
  ☆23Feb 3, 2021Updated 5 years ago
• Hagrid29 / herpaderply_hollowing

  View on GitHub
  Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping
  ☆69Oct 9, 2022Updated 3 years ago
• thiagopeixoto / mystique-self-injection

  View on GitHub
  An improvement and a different approach to Mockingjay Self-Injection.
  ☆35May 21, 2024Updated last year
• s4dbrd / ETWReader

  View on GitHub
  Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich
  ☆18Jun 29, 2024Updated last year
• net-dawg / SSHniffer

  View on GitHub
  ☆35Dec 6, 2023Updated 2 years ago
• BarbaTunnelCoder / BarbaTunnel

  View on GitHub
  A layer that hide, redirect. forward, re-encrypt internet packet to keep VPN, Proxies and other p2p software hidden from Firewall. Free i…
  ☆190Dec 4, 2018Updated 7 years ago
• FalconForceTeam / bof-winrm-client

  View on GitHub
  ☆127Jan 23, 2025Updated last year
• praetorian-inc / Matryoshka

  View on GitHub
  Matryoshka loader is a tool that red team operators can leverage to generate shellcode for Microsoft Office document phishing payloads.
  ☆43May 24, 2021Updated 4 years ago
• brian8544 / Kription-WoW

  View on GitHub
  ☆10Jan 7, 2017Updated 9 years ago
• Dor00tkit / CVE-2024-30090

  View on GitHub
  CVE-2024-30090 - LPE PoC
  ☆108Oct 17, 2024Updated last year
• heyheysky / vulnerable-driver

  View on GitHub
  ☆25Jan 6, 2025Updated last year
• Pdawg-bytes / UEFIBootKit

  View on GitHub
  A simple UEFI bootkit made by @NSG650 and me.
  ☆26Dec 29, 2024Updated last year
• mlcsec / proctools

  View on GitHub
  Small toolkit for extracting information and dumping sensitive strings from Windows processes
  ☆117Jul 17, 2024Updated last year
• WinDbgScripts / PYKD

  View on GitHub
  This contains Helpful PYKD (Python Extension for Windbg) scripts
  ☆49Mar 9, 2015Updated 11 years ago
• sec-consult / msiscan

  View on GitHub
  Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers
  ☆126Sep 12, 2024Updated last year