killvxk / awesome_code_windows_kernel
☆16Updated last year
Related projects ⓘ
Alternatives and complementary repositories for awesome_code_windows_kernel
- 参考taviso的代码逆向一下mpengine.dll☆19Updated 2 years ago
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆20Updated 2 years ago
- Easily hook WIN32 x64 functions☆17Updated 3 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆30Updated 3 years ago
- ☆11Updated 2 years ago
- ☆8Updated 4 months ago
- A kernel mode Windows rootkit in development.☆49Updated 2 years ago
- A working version of this tutorial: https://docs.microsoft.com/en-us/windows/desktop/rpc/tutorial☆16Updated 5 years ago
- Load Dll into Kernel space☆38Updated 2 years ago
- automates exploits using ROP chains, using ntdll-scraper☆16Updated 2 years ago
- What makes it page☆17Updated 2 years ago
- use ce driver, kernel library.☆13Updated last year
- ☆19Updated 5 years ago
- ☆26Updated last year
- Based on nt5src☆15Updated last year
- Dump PDB Symbols including support for Bochs Debugging Format (with wine support)☆14Updated last year
- ☆22Updated last year
- Wow64 Heaven's Gate Hook☆26Updated 3 years ago
- Yet another windows syscall library☆16Updated 4 years ago
- 粗暴地枚举管理内核的WFP对象。 Manage kernel WFPs in a brutal way.☆26Updated 6 years ago
- My try to implement a virtual CPU in C☆19Updated 11 months ago
- ☆12Updated 2 years ago
- 从admin冲到TrustedInstaller☆17Updated last year
- Protected Process Light Library☆18Updated 4 years ago
- intel vt-x hypervisor ept☆25Updated 4 years ago
- Windows CIFS/SMB packet generation and SMB networking library☆11Updated 4 years ago
- A compact tool for detecting AV/EDR hooks in default Windows libraries.☆29Updated 2 years ago