Alternatives and similar repositories for comon:

Users that are interested in comon are comparing it to the libraries listed below

• zodiacon / ApiSetView
  API Set Viewer
  ☆88Updated 2 months ago
• zodiacon / KernelObjectView
  View handles and object for each object type
  ☆62Updated 5 years ago
• DownWithUp / ALPC-Example
  An example of a client and server using Windows' ALPC functions to send and receive data.
  ☆95Updated 2 months ago
• zodiacon / WinSys
  C++ library for low-level Windows development
  ☆73Updated 11 months ago
• 0vercl0k / kdmp-parser
  A Windows kernel dump C++ parser library with Python 3 bindings.
  ☆199Updated 8 months ago
• csandker / InterProcessCommunication-Samples
  Some Code Samples for Windows based Inter-Process-Communication (IPC)
  ☆171Updated last year
• sgabe / SymlinkProtect
  File system minifilter driver for Windows to block symbolic link attacks.
  ☆51Updated 4 years ago
• TimMisiak / windup
  WinDbg installer/updater
  ☆39Updated last year
• wbenny / EtwConsumerNT
  Simple project that demonstrates how an ETW consumer can be created just by using NTDLL
  ☆139Updated 6 years ago
• zodiacon / VerifierDLL
  Example of building an application verifer DLL
  ☆45Updated 10 months ago
• zodiacon / syllabi
  ☆61Updated last year
• yardenshafir / PoolViewer
  An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.
  ☆137Updated 2 years ago
• ntdiff / ntdiff
  ☆126Updated 6 months ago
• kobykahane / NpEtw
  Named pipe I/O ETW provider for Windows
  ☆70Updated 4 years ago
• ionescu007 / hazmat5
  Local OXID Resolver (LCLOR) : Research and Tooling
  ☆34Updated 3 years ago
• kkent030315 / NtSymbol
  Resolve DOS MZ executable symbols at runtime
  ☆97Updated 3 years ago
• Signal-Labs / IOCTLDump
  ☆142Updated last year
• DownWithUp / CallMon
  CallMon is an experimental system call monitoring tool that works on Windows 10 versions 2004+ using PsAltSystemCallHandlers
  ☆130Updated 4 years ago
• 0vercl0k / sic
  Enumerate user mode shared memory mappings on Windows.
  ☆118Updated 4 years ago
• zodiacon / sysrun
  Run any executable as SYSTEM account (no service required)
  ☆127Updated 10 months ago
• yardenshafir / InformationClasses
  Documenting system information classes and their uses
  ☆50Updated 3 years ago
• Microwave89 / createuserprocess
  Three Tiny Examples of Directly Using Vista's NtCreateUserProcess
  ☆87Updated 9 years ago
• msuiche / LiveCloudKd
  Hyper-V Research is trendy now
  ☆178Updated 10 months ago
• tandasat / hvext
  The Windbg extensions to study Hyper-V on Intel and AMD processors.
  ☆152Updated 3 weeks ago
• Biswa96 / TraceEvent
  Trace events in real time sessions
  ☆45Updated last year
• gerhart01 / Hyper-V-Tools
  Different tools for Microsoft Hyper-V researching
  ☆49Updated 9 months ago
• 0xcpu / WinAltSyscallHandler
  Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999
  ☆209Updated 5 years ago
• jonaslyk / temp
  ☆71Updated 2 years ago
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆244Updated 2 years ago
• hugsy / windbg_js_scripts
  Toy scripts for playing with WinDbg JS API
  ☆226Updated 8 months ago