m417z / ntdocLinks
Native API online documentation, based on the System Informer (formerly Process Hacker) phnt headers
☆265Updated last week
Alternatives and similar repositories for ntdoc
Users that are interested in ntdoc are comparing it to the libraries listed below
Sorting:
- Single header version of System Informer's phnt library.☆223Updated this week
- Collection of undocumented Windows API declarations.☆317Updated 2 weeks ago
- Debugger Anti-Detection Benchmark☆334Updated last year
- COFF and Portable Executable format described using standard C++ with no dependencies.☆318Updated 2 months ago
- HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate oper…☆364Updated 2 years ago
- Inline syscalls made easy for windows on clang☆711Updated last year
- Bootkit for Windows Sandbox to disable DSE/PatchGuard.☆289Updated 8 months ago
- System call hook for Windows 10 20H1☆493Updated 4 years ago
- WinVisor - A hypervisor-based emulator for Windows x64 user-mode executables using Windows Hypervisor Platform API☆581Updated 5 months ago
- Native code virtualizer for x64 binaries☆486Updated 6 months ago
- An x86-64 Code Virtualizer☆270Updated 9 months ago
- The Definitive Guide To Process Cloning on Windows☆505Updated last year
- Guided Hacking's official tool to practice bypassing anti-debug techniques.☆277Updated last month
- Samples for the book Windows Kernel Programming, 2nd edition☆342Updated 6 months ago
- Windows inline hooking tool.☆273Updated 6 years ago
- DLL that hooks the NtQuerySystemInformation API and hides a process name☆290Updated 2 years ago
- A library to develop kernel level Windows payloads for post HVCI era☆413Updated 4 years ago
- Controlling Windows PP(L)s☆336Updated 2 years ago
- C++ STL in the Windows Kernel with C++ Exception Support☆416Updated last year
- Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.☆603Updated 4 months ago
- PE Viewer☆182Updated 5 months ago
- Advanced driver monitoring utility.☆212Updated 2 years ago
- 🗜️ A packer for Windows x86 executable files written in C and Intel x86 Assembly. The new file after packing can obstruct reverse engine…☆344Updated 8 months ago
- Important notes and topics on my journey towards mastering Windows Internals☆395Updated last year
- Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks☆369Updated 8 months ago
- protector & obfuscator & code virtualizer☆539Updated last week
- Operating System Design Review: A systemic analysis of modern systems architecture☆314Updated 4 months ago
- Collection of hypervisor detections☆242Updated 9 months ago
- A DTrace on Windows Reimplementation☆348Updated 4 months ago
- A small x64 library to load dll's into memory.☆443Updated last year