kusano / ntfsdumpLinks
Extract files from NTFS Volume
☆32Updated 4 years ago
Alternatives and similar repositories for ntfsdump
Users that are interested in ntfsdump are comparing it to the libraries listed below
Sorting:
- A ready-made template for a project based on libpeconv.☆47Updated 6 months ago
- Blog posts☆30Updated 5 years ago
- Dumps information about all the callback objects found in a dump file and the functions registered for them☆36Updated 4 years ago
- Windows x64 Process Scanner to detect application compatability shims☆37Updated 6 years ago
- Demo service that runs in svchost.exe☆79Updated 7 years ago
- Windows Process Lockdown Tool using Job Objects☆70Updated 11 years ago
- Yet another Windows DLL injector.☆39Updated 3 years ago
- MSTSC Packet Dump Utility☆29Updated 3 years ago
- Call 32bit NtDLL API directly from WoW64 Layer☆60Updated 4 years ago
- Explore Job Objects on a Windows system☆83Updated 5 years ago
- Sysmon shenanigans☆66Updated 4 years ago
- ☆50Updated 5 years ago
- A working version of this tutorial: https://docs.microsoft.com/en-us/windows/desktop/rpc/tutorial☆16Updated 6 years ago
- exploit termdd.sys(support kb4499175)☆59Updated 6 years ago
- ☆31Updated 5 years ago
- ☆36Updated 6 years ago
- Headers for linking your software with ntdll.dll☆15Updated 4 years ago
- Enumerate the DLLs/Modules using NtQueryVirtualMemory☆32Updated 10 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆31Updated 4 years ago
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆44Updated 6 years ago
- A small library helping to parse commandline parameters (for C/C++)☆57Updated 3 months ago
- An example pattern in C# for using WMI to monitor process creation and termination events.☆52Updated 7 years ago
- An example of PE hollowing injection technique☆24Updated 6 years ago
- Bare template for a Kernel Mode Driver☆51Updated 5 years ago
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆99Updated 5 years ago
- ☆20Updated 6 years ago
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆55Updated 3 years ago
- Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler☆29Updated 4 years ago
- A simple API monitor for Windbg☆63Updated 8 years ago
- Lightweight Portable Executable parsing library and a demo peParser application.☆81Updated 2 years ago