Alternatives and similar repositories for ntoskrnl

Users that are interested in ntoskrnl are comparing it to the libraries listed below

• IlayTheVuln / Kernelious-Rootkit

  View on GitHub
  a dkom rootkit that targets windows x64 systems. the rootkit hooks and edits criticl memory sections in order to hide different resources…
  ☆18Jul 5, 2023Updated 2 years ago
• trustedsec / Windows-MS-LSAT-RPC-Example

  View on GitHub
  Windows RPC example calling stubs generated from MS-LSAT and MS-LSAD
  ☆28Jan 4, 2024Updated 2 years ago
• Baseult / Tutorial-MHYProt-Source

  View on GitHub
  ☆38Dec 21, 2022Updated 3 years ago
• VirtualAlllocEx / HWBP-DEP-Bypass

  View on GitHub
  Educational proof-of-concept demonstrating DEP/NX bypass using hardware breakpoints, vectored exception handling, and instruction emulati…
  ☆98Oct 17, 2025Updated 3 months ago
• 0vercl0k / kdmp-parser-rs

  View on GitHub
  A KISS Rust crate to parse Windows kernel crash-dumps created by Windows & its debugger.
  ☆42Jan 2, 2026Updated last month
• EvanMcBroom / microsocks11

  View on GitHub
  A cross-platform SOCKS5 library and server based on the microsocks project.
  ☆38Feb 7, 2022Updated 4 years ago
• HARM4Y / Minifilter

  View on GitHub
  参考《Windows内核安全与驱动开发》的透明加密解密Minifilter
  ☆75May 29, 2022Updated 3 years ago
• TheNNX / NNXOS64

  View on GitHub
  A 64 bit OS
  ☆10Nov 12, 2025Updated 3 months ago
• GaurangPohankar / Python-Google-Places-Extraction

  View on GitHub
  Python script to scrape the data from the google places with reviews , website , name , total reviews , phone number etc . and stores it …
  ☆11Aug 27, 2019Updated 6 years ago
• eversinc33 / drvtrace

  View on GitHub
  WinDbg plugin to trace module transitions from a debugged driver.
  ☆40Dec 22, 2025Updated last month
• llkbkh / Anti-Rootkit

  View on GitHub
  ☆53Dec 21, 2022Updated 3 years ago
• keowu / ATHERCRC32

  View on GitHub
  ATHERCRC32 Provide developers with a complete framework for using CRC32 in functions/classes in memory, and protecting your software agai…
  ☆15Jan 29, 2021Updated 5 years ago
• NewWorldComingSoon / UnknownField

  View on GitHub
  UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.
  ☆44Jan 21, 2023Updated 3 years ago
• matthewwall / weewx-wh23xx

  View on GitHub
  weewx driver for fine offset wh23xx hardware (tycon tp2700)
  ☆10Oct 27, 2020Updated 5 years ago
• M0nster3 / FanBox

  View on GitHub
  Some anti-sandbox codes, copy directly to strengthen your own ShellCode
  ☆12Dec 26, 2022Updated 3 years ago
• CyberSecurityExploitDevelopment / SMBLibrary

  View on GitHub
  Windows CIFS/SMB packet generation and SMB networking library
  ☆12Aug 25, 2020Updated 5 years ago
• chausner / vcxproj2cmake

  View on GitHub
  Tool to convert Microsoft Visual C++ projects and solutions to CMake
  ☆14Feb 5, 2026Updated last week
• nefarius / WinApiSniffer

  View on GitHub
  Windows API sniffer and dumper utility for reverse engineering.
  ☆13Jun 22, 2023Updated 2 years ago
• NoneShell / OwnConfigs

  View on GitHub
  some useful configs
  ☆10Oct 7, 2025Updated 4 months ago
• CS2-OOF-LV / CS2-Client-Files

  View on GitHub
  ☆11Sep 1, 2023Updated 2 years ago
• FerminT / TelegramRAT

  View on GitHub
  .NET 4.5 Remote Access Tool (RAT) implementation with Telegram's API as server
  ☆11Jul 29, 2022Updated 3 years ago
• stevietrouble / haxrs

  View on GitHub
  Cheat Engine alternative written in Rust
  ☆12Nov 15, 2022Updated 3 years ago
• sjkim1127 / Reversecore_MCP

  View on GitHub
  A security-first MCP server empowering AI agents to orchestrate Ghidra, Radare2, and YARA for automated reverse engineering.
  ☆45Jan 21, 2026Updated 3 weeks ago
• gmh5225 / deobf-Arxan-Deob-C

  View on GitHub
  Simple C program to quickly deobfuscate windows executables protected with Arxan.
  ☆14Dec 18, 2022Updated 3 years ago
• 0xn0ne / RockByte2take1

  View on GitHub
  依托于 2take1 菜单开发的子级菜单，用于增强 2take1 功能
  ☆12Feb 19, 2023Updated 2 years ago
• XiaBei-cy / BetterInject

  View on GitHub
  Android Shared Library Mod Injector (Ptrace). Android 5 ~ 14 (arm, arm64, x86, x86_64) + Emulator.
  ☆17Sep 28, 2024Updated last year
• mel2oo / Driver-for-windows

  View on GitHub
  ☆17Jun 30, 2020Updated 5 years ago
• Alan-Jowett / bpf_performance_backup

  View on GitHub
  A set of platform agnostic to measure the performance of various BPF helper functions
  ☆10Sep 11, 2023Updated 2 years ago
• therealdreg / pdbdump_bochs

  View on GitHub
  Dump PDB Symbols including support for Bochs Debugging Format (with wine support)
  ☆14Aug 11, 2023Updated 2 years ago
• Chener-03 / AntiHook

  View on GitHub
  扫描以及恢复 r3hook 类
  ☆10Aug 29, 2021Updated 4 years ago
• keowu / winsystemprogramming

  View on GitHub
  Learn Winapi in this Repo with examples, to understand its abstraction in reverse engineering for Windows.
  ☆11Aug 8, 2022Updated 3 years ago
• Garck3h / killBehinderMemShell

  View on GitHub
  一款冰蝎内存马清除工具；冰蝎内存马卸载工具 ；内存马的查杀功能有待实现。
  ☆12Aug 20, 2023Updated 2 years ago
• Captain-FLAM / PERFECTwall

  View on GitHub
  The first 100% open-source Firewall for Windows 8/10/11 based on domain names !
  ☆11Jul 6, 2022Updated 3 years ago
• NatLee / simply-blur-detector

  View on GitHub
  A simply deep learning based blur image detector.
  ☆10Mar 29, 2023Updated 2 years ago
• winpfilter / winpfilter

  View on GitHub
  A lightweight packet filtering firewall framework for windows platform
  ☆11Jan 31, 2025Updated last year
• ticzz / Aimware-v5-CS2-luas

  View on GitHub
  Aimware LUAscripts for CS2
  ☆10Dec 7, 2024Updated last year
• orca-eaa5a / mac-defender

  View on GitHub
  ☆11Jan 8, 2022Updated 4 years ago
• Mem2019 / BruteForceCrackEncoding

  View on GitHub
  Given a kind of unknown encoding and the result of encoding, using this framework, we can crack and get the original text
  ☆20Jan 24, 2018Updated 8 years ago
• patrickmatula / Windows-Internals-Learning-Resources

  View on GitHub
  ☆115Feb 3, 2026Updated last week