m417z / ntdocLinks
Native API online documentation, based on the System Informer (formerly Process Hacker) phnt headers
☆277Updated 3 weeks ago
Alternatives and similar repositories for ntdoc
Users that are interested in ntdoc are comparing it to the libraries listed below
Sorting:
- Collection of undocumented Windows API declarations.☆320Updated 2 months ago
- Single header version of System Informer's phnt library.☆226Updated this week
- WinVisor - A hypervisor-based emulator for Windows x64 user-mode executables using Windows Hypervisor Platform API☆589Updated 6 months ago
- Native code virtualizer for x64 binaries☆497Updated 7 months ago
- Debugger Anti-Detection Benchmark☆348Updated 2 weeks ago
- protector & obfuscator & code virtualizer☆620Updated this week
- HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate oper…☆369Updated 2 years ago
- Samples for the book Windows Kernel Programming, 2nd edition☆352Updated this week
- LLVM fork with explicit compatibility with MSVC 2022 features.☆322Updated 4 months ago
- COFF and Portable Executable format described using standard C++ with no dependencies.☆324Updated 3 months ago
- A collection of various vulnerable (mostly physical memory exposing) drivers.☆397Updated 3 years ago
- An x86-64 Code Virtualizer☆277Updated 10 months ago
- Guided Hacking's official tool to practice bypassing anti-debug techniques.☆280Updated 2 months ago
- The Windows Research Kernel (WRK)☆204Updated 8 years ago
- Bootkit for Windows Sandbox to disable DSE/PatchGuard.☆297Updated 9 months ago
- Static deobfuscator for Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.☆295Updated last year
- 🗜️ A packer for Windows x86 executable files written in C and Intel x86 Assembly. The new file after packing can obstruct reverse engine…☆344Updated 9 months ago
- A DTrace on Windows Reimplementation☆349Updated 6 months ago
- Collection of hypervisor detections☆247Updated 10 months ago
- Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!☆366Updated 3 months ago
- DLL that hooks the NtQuerySystemInformation API and hides a process name☆292Updated 2 years ago
- RISC-V Virtual Machine☆243Updated last month
- Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks☆372Updated last month
- PE bin2bin obfuscator☆754Updated 3 months ago
- msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.☆152Updated last year
- Operating System Design Review: A systemic analysis of modern systems architecture☆317Updated 5 months ago
- Windows inline hooking tool.☆281Updated 6 years ago
- A library to develop kernel level Windows payloads for post HVCI era☆427Updated 4 years ago
- Simple x86/x64 Assembler/Disassembler/Emulator☆187Updated last year
- Demo proof of concept for shadow regions, and implementation of HyperDeceit.☆285Updated 2 years ago