Alternatives and similar repositories for ntos-boot

Users that are interested in ntos-boot are comparing it to the libraries listed below

• HoShiMin / Arch
  A bunch of architectural headers for i386 and AMD64
  ☆41Updated last year
• irql / nokd
  reverse engineering of the windows nt kernel debugger protocol & reimplementation.
  ☆28Updated last year
• mrexodia / EfiCMake
  CMake template for a basic EFI application/bootkit. This library is header-only, there is no EDK2 runtime!).
  ☆78Updated 2 years ago
• assarbad / msvc-undoc
  Undocumented MSVC
  ☆34Updated last year
• zodiacon / DbgPrint
  Debug Print viewer (user and kernel)
  ☆68Updated last year
• yardenshafir / InformationClasses
  Documenting system information classes and their uses
  ☆54Updated 3 years ago
• BerkanYildiz / EasyNT
  Windows Kernel API wrapper with simplified functions and enterprise driver extensions.
  ☆28Updated last month
• SHA-MRIZ / DisplayMiniportHooking
  ☆48Updated 4 years ago
• tandasat / HelloAmdHvPkg
  HelloAmdHvPkg is a type-1 research hypervisor for AMD processors.
  ☆96Updated 5 years ago
• CZashi / win-reverse
  ntos shit
  ☆26Updated last year
• shareef12 / libpdb
  Parser for Microsoft Program Database (PDB) files
  ☆76Updated 5 years ago
• Biswa96 / PDBDownloader
  Standalone program to download PDB Symbol files for debugging without WDK
  ☆79Updated 6 years ago
• DownWithUp / ALPC-Example
  An example of a client and server using Windows' ALPC functions to send and receive data.
  ☆101Updated 7 months ago
• MeeSong / Reverse-Engineering
  Reverse Engineering
  ☆13Updated 8 years ago
• Air14 / SmmLoader
  Runtime smm module loader
  ☆35Updated 2 years ago
• microsoft / ndis-driver-library
  Code to make it easier to write an NDIS network driver on Windows
  ☆90Updated last year
• microsoft / usersim
  ☆90Updated this week
• 0ffffffffh / system_call_hook_win10_1903
  This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness
  ☆53Updated 5 years ago
• wizardengineer / krakensvm-mg
  A simple x86_64 AMD-v hypervisor type-2 Programmed with C++, with soon to be added syscall hooks. [W.I.P]
  ☆99Updated 2 years ago
• 0mWindyBug / WFPCalloutReserach
  research revolving the windows filtering platform callout mechanism
  ☆32Updated last year
• crvvdev / intraceptor
  Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.
  ☆29Updated 3 years ago
• tandasat / ia32-doc
  IA32-doc is a project which aims to put as many definitions from the Intel Manual into machine-processable format as possible
  ☆17Updated 3 years ago
• ekknod / KiSystemStartupMeme
  Custom KiSystemStartup, can be used to modificate kernel before boot.
  ☆52Updated 3 years ago
• Fyyre / ntdll
  ntdll.h - compatible with MSVC 6.0, Intel C++ Compiler and MinGW. Serves as a complete replacement for Windows.h
  ☆143Updated 6 years ago
• sgabe / SymlinkProtect
  File system minifilter driver for Windows to block symbolic link attacks.
  ☆52Updated 4 years ago
• GetRektBoy724 / KPDB
  Windows PDB parser for kernel-mode environment.
  ☆100Updated 2 months ago
• rich-ayr / phnt_nightly
  Native API header files for the Process Hacker project (nightly).
  ☆26Updated last week
• stolenbytes / sxshashing
  ☆18Updated 7 years ago
• RIscRIpt / wdmcpp
  Visual Studio Project example for using Microsoft's STL in WDM (Windows Kernel-mode Driver)
  ☆25Updated 4 years ago
• HyperDbg / RedDbg
  Hypervisor-based debugger for AMD processors
  ☆60Updated last year