ernw/Windows-Insight external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ernw/Windows-Insight

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ernw/Windows-Insight)

Close

ernw / Windows-InsightView on GitHubMore

• External links
• Readme badge

The content of this repository aims to assist efforts on analysing inner working principles, functionalities, and properties of the Microsoft Windows operating system. This repository stores relevant documentation as well as executable files needed for conducting analysis studies.

☆151May 29, 2020Updated 5 years ago

Alternatives and similar repositories for Windows-Insight

Users that are interested in Windows-Insight are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• RealHarshThakur / js.net

  View on GitHub
  This repo contains code of JScript .NET which can be used as alternative to csc.exe to run potentially malicious code, which ships in all…
  ☆13Nov 8, 2019Updated 6 years ago
• JaanusKaapPublic / Slides

  View on GitHub
  Will try to put here slides from now on when I give a talk
  ☆24Oct 11, 2021Updated 4 years ago
• dwizzzle / Presentations

  View on GitHub
  A repository of my presentations
  ☆166Nov 16, 2023Updated 2 years ago
• thalium / icebox

  View on GitHub
  Virtual Machine Introspection, Tracing & Debugging
  ☆596Feb 22, 2022Updated 4 years ago
• SilverTuxedo / keval

  View on GitHub
  Call arbitrary Windows kernel-mode functions from Python on another machine
  ☆44Sep 17, 2021Updated 4 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• sorasuzukidev / ethereum-bnb-mev-bot

  View on GitHub
  🔵 Ethereum and BNB (BSC) Mev bot - Arbitrage
  ☆364Mar 4, 2026Updated last month
• ChrisTheCoolHut / Easy-Pickings

  View on GitHub
  Automatic function exporting and linking for fuzzing cross-architecture binaries.
  ☆51Sep 9, 2018Updated 7 years ago
• OmerYa / Named-Pipe-Sniffer

  View on GitHub
  Mario & Luigi - Tools for sniffing Windows Named Pipes communication
  ☆129Nov 15, 2016Updated 9 years ago
• D4stiny / PeaceMaker

  View on GitHub
  PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.
  ☆431May 22, 2020Updated 5 years ago
• hugsy / CFB

  View on GitHub
  CFB is a ProcMon-style tool designed to assist capturing IRPs sent to Windows drivers.
  ☆332Mar 26, 2024Updated 2 years ago
• tyranid / setsidmapping

  View on GitHub
  Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.
  ☆26Oct 25, 2020Updated 5 years ago
• two06 / AMSI_Handler

  View on GitHub
  Automate AV evasion by calling AMSI
  ☆88May 31, 2023Updated 2 years ago
• aaaddress1 / wow64Jit

  View on GitHub
  Call 32bit NtDLL API directly from WoW64 Layer
  ☆62Nov 18, 2020Updated 5 years ago
• JKornev / cfgdump

  View on GitHub
  Windbg extension that allows you analyze Control Flow Guard map
  ☆38Oct 7, 2021Updated 4 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• 86hh / cfg-teleport-demo

  View on GitHub
  Control Flow Guard Teleportation demo
  ☆23Jul 28, 2019Updated 6 years ago
• yardenshafir / CallbackObjectAnalyzer

  View on GitHub
  Dumps information about all the callback objects found in a dump file and the functions registered for them
  ☆38Oct 21, 2020Updated 5 years ago
• homjxi0e / ReaCOM

  View on GitHub
  ReaCOM has got a lot of tools to use and is related to component object model
  ☆74Feb 3, 2020Updated 6 years ago
• gdabah / win32k-bugs

  View on GitHub
  Dump of win32k POCs for bugs I've found
  ☆380Mar 6, 2022Updated 4 years ago
• l0ss / Get-GPTrashfire

  View on GitHub
  B-Sides CBR 2018 talk about group policy and Grouper
  ☆38May 3, 2019Updated 6 years ago
• worawit / CVE-2019-0708

  View on GitHub
  CVE-2019-0708 (BlueKeep)
  ☆110Jul 7, 2020Updated 5 years ago
• Wenzel / oswatcher

  View on GitHub
  A framework to track the evolution of Operating Systems over time
  ☆66Oct 10, 2023Updated 2 years ago
• gamozolabs / applepie

  View on GitHub
  A hypervisor for fuzzing built with WHVP and Bochs
  ☆381Feb 5, 2019Updated 7 years ago
• peleghd / Windows-10-Exploitation

  View on GitHub
  ☆135Dec 15, 2019Updated 6 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• DimopoulosElias / alpc-mmc-uac-bypass

  View on GitHub
  UAC Bypass with mmc via alpc
  ☆158Apr 5, 2019Updated 7 years ago
• aleksost / MemoryDecompression

  View on GitHub
  Tool to decompress data from Windows 10 page files and memory dumps, that has been compressed by the Windows 10 memory manager.
  ☆51Apr 9, 2019Updated 7 years ago
• zodiacon / NativeApps

  View on GitHub
  Demos and presentation from SECArmy Village Grayhat 2020
  ☆37Mar 15, 2023Updated 3 years ago
• WMSR / utils

  View on GitHub
  ☆11Jun 9, 2020Updated 5 years ago
• renorobert / virtualbox-nat-dhcp-bugs

  View on GitHub
  ☆30Dec 4, 2018Updated 7 years ago
• mrowensnobody / presentation

  View on GitHub
  ☆43Aug 30, 2018Updated 7 years ago
• secrary / IDA-scripts

  View on GitHub
  IDAPro scripts/plugins
  ☆93Feb 26, 2019Updated 7 years ago
• v-p-b / cve-2019-12750

  View on GitHub
  sploit
  ☆67Dec 21, 2019Updated 6 years ago
• v-p-b / kaspy_toolz

  View on GitHub
  ☆46Aug 21, 2019Updated 6 years ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• 0xcpu / WinAltSyscallHandler

  View on GitHub
  Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999
  ☆242Nov 6, 2019Updated 6 years ago
• TakahiroHaruyama / ida_haru

  View on GitHub
  scripts/plugins for IDA Pro
  ☆178Jan 10, 2025Updated last year
• sgabe / CVE-2019-1253

  View on GitHub
  AppXSvc Arbitrary File Security Descriptor Overwrite EoP
  ☆20Sep 15, 2019Updated 6 years ago
• sevagas / WindowsDefender_ASR_Bypass-OffensiveCon2019

  View on GitHub
  Public documents related to my talk "Bypass Windows Exploit Guard ASR" at Offensive Con 2019.
  ☆94Feb 24, 2019Updated 7 years ago
• palantir / exploitguard

  View on GitHub
  Documentation and supporting script sample for Windows Exploit Guard
  ☆169Sep 8, 2025Updated 7 months ago
• bindecy / ohsmap

  View on GitHub
  ASLR bypass in Chrome version 77
  ☆24Oct 28, 2019Updated 6 years ago
• 0xcpu / ExecutiveCallbackObjects

  View on GitHub
  Research on Windows Kernel Executive Callback Objects
  ☆316Feb 22, 2020Updated 6 years ago