dulong-lab / video-virtual-memory-materials
《关于编写 x64 Windows 10 驱动以了解虚拟内存这件事》系列视频附带的代码和材料
☆97Updated last year
Related projects ⓘ
Alternatives and complementary repositories for video-virtual-memory-materials
- ☆183Updated last year
- ☆150Updated 4 years ago
- etw hook (syscall/infinity hook) compatible with the latest Windows version of PG☆209Updated 6 months ago
- 可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。☆104Updated 2 years ago
- ☆107Updated 5 years ago
- ☆77Updated 3 years ago
- Radical Windows ARK☆206Updated this week
- a monitoring windows driver calls kernel api tools☆92Updated 4 months ago
- ☆79Updated 2 years ago
- a Windows kernel Pdb parsing and downloading library that running purely in kernel mode without any R3 programs.☆141Updated last month
- an encryption library designed for Windows kernel and driver programming☆114Updated last year
- query-pdb is a server-side software for parsing PDB files. The software provides PDB online parsing service.☆140Updated last month
- ShotHv☆125Updated 2 years ago
- This project migrated to https://github.com/backengineering/llvm-msvc☆140Updated last year
- ☆135Updated 5 years ago
- a debugger use vt technology☆261Updated 2 years ago
- Analyze Windows x64 Kernel Memory Layout☆121Updated 3 years ago
- Page fault hook use ept (Intel Virtualization Technology)☆175Updated 8 years ago
- ☆159Updated 2 years ago
- 内核驱动加载/卸载痕迹清理,努力绕过反作弊吧 PiDDBCacheTable and MmLastUnloadedDriver☆140Updated last year
- Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查☆91Updated last year
- ☆169Updated last year
- 从MmPfnData中枚举进程和页目录基址☆133Updated last year
- 远程注入无导入函数dll,自动重定位以后内存加载dll☆44Updated 5 years ago
- r/w virtual memory without attach☆147Updated last year
- ☆125Updated last year
- 之前学习X64VT写的代码,很多坑,但是大体的逻辑还是完整的。现发出来给更多想学VT的人参考...☆66Updated 3 years ago
- ☆49Updated last year
- ☆121Updated 4 years ago