正确解析 _HEAP_VS_***符号 ,支持在最新win11 24h2 运行,替换windbg自带的!pool命令
☆17Nov 30, 2024Updated last year
Alternatives and similar repositories for Win11PoolView
Users that are interested in Win11PoolView are comparing it to the libraries listed below
Sorting:
- a windows kernel keylogger that works☆20Feb 12, 2024Updated 2 years ago
- Tool for PDB generation from IDA Pro database☆12Jul 27, 2020Updated 5 years ago
- A cross platform framework to recover driver's communication interface.☆11Mar 26, 2021Updated 4 years ago
- silence file system monitoring components by hooking their minifilters☆61Jan 31, 2024Updated 2 years ago
- ☆11Feb 13, 2024Updated 2 years ago
- ☆87Mar 2, 2025Updated last year
- A simple tool for enumerating dynamic endpoints on a DCE/RPC remote or local endpoint mapper.☆15Oct 9, 2020Updated 5 years ago
- Source files for my posts☆17Jun 20, 2023Updated 2 years ago
- Repository of Microsoft Driver Block Lists based off of OS-builds☆43Apr 14, 2024Updated last year
- anti cheat drv open source☆19Apr 18, 2024Updated last year
- This repository will be containing all kind of additional resources that I think might be useful for someone fuzzing document (pdf, doc, …☆15Mar 22, 2020Updated 5 years ago
- Generate Go bindings for shared C libraries.☆15Jul 13, 2024Updated last year
- Reverse SOCKS5 Proxy Written in Rust☆28Mar 9, 2021Updated 5 years ago
- filter driver to hide files and directories☆25Feb 12, 2024Updated 2 years ago
- research revolving the windows filtering platform callout mechanism☆39May 26, 2024Updated last year
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆61Oct 19, 2024Updated last year
- Export IDA microcode to BinExport format so that you can use BinDiff to diff microcodes☆12Sep 21, 2024Updated last year
- AngrPT recover the Windows Driver's DeviceIoControl Interface and Dependencies for getting higher coverage in Fuzzing Process.☆20Jan 20, 2026Updated 2 months ago
- Slide of my conference presentations☆14Sep 5, 2024Updated last year
- Ghidra data type archive for Windows driver analysis☆30Oct 10, 2024Updated last year
- a demo for x86/x64's paging memory management learning, convert a virtual address from ring3 to physical address in ring0☆19Aug 26, 2017Updated 8 years ago
- ☆25Apr 28, 2024Updated last year
- Overview of Microsoft Patch Tuesday☆14Sep 13, 2024Updated last year
- Hooking Heavens Gate in a weekend☆13Jan 1, 2022Updated 4 years ago
- Supports code generation and SDK functionality for VBS enclaves.☆25Feb 25, 2026Updated 3 weeks ago
- An advanced DKOM for drivers with "DRIVER_OBJECT"☆22Feb 19, 2023Updated 3 years ago
- ☆57Aug 28, 2023Updated 2 years ago
- ☆48Jul 7, 2024Updated last year
- MSI creator for exe setup/installer☆11Jun 27, 2023Updated 2 years ago
- Faster version of `symchk /om` for generating PDB manifests of offline machines☆19Apr 18, 2021Updated 4 years ago
- Tools for analyzing Windows containers and break container's isolation☆33Aug 2, 2022Updated 3 years ago
- A dark x64dbg color theme based on IDA Consonance☆19Apr 5, 2018Updated 7 years ago
- ntoskrnl .data hooks for UM-KM communication☆54May 26, 2024Updated last year
- Try to transport the tcpip stack of ReactOS to Windows XP.☆17Feb 27, 2014Updated 12 years ago
- ☆33Dec 22, 2020Updated 5 years ago
- ☆61Aug 21, 2023Updated 2 years ago
- Toolkit for Hyper-V security research☆158Mar 7, 2022Updated 4 years ago
- An Anti-Rootkit implemented using Intel VT-x☆40Feb 22, 2019Updated 7 years ago
- Basic utilities for executing, reading and writing 64-bit data in a 32-bit WoW64 process☆19Jul 8, 2022Updated 3 years ago