m417z / ntdocLinks
Native API online documentation, based on the System Informer (formerly Process Hacker) phnt headers
☆285Updated this week
Alternatives and similar repositories for ntdoc
Users that are interested in ntdoc are comparing it to the libraries listed below
Sorting:
- WinVisor - A hypervisor-based emulator for Windows x64 user-mode executables using Windows Hypervisor Platform API☆599Updated 7 months ago
- Single header version of System Informer's phnt library.☆228Updated last week
- Debugger Anti-Detection Benchmark☆356Updated 2 weeks ago
- Collection of undocumented Windows API declarations.☆323Updated this week
- Native code virtualizer for x64 binaries☆502Updated 8 months ago
- HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate oper…☆376Updated 2 years ago
- protector & obfuscator & code virtualizer☆624Updated last week
- Samples for the book Windows Kernel Programming, 2nd edition☆355Updated 3 weeks ago
- An x86-64 Code Virtualizer☆277Updated 11 months ago
- Windows inline hooking tool.☆282Updated 6 years ago
- Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!☆373Updated 4 months ago
- Guided Hacking's official tool to practice bypassing anti-debug techniques.☆284Updated 3 months ago
- COFF and Portable Executable format described using standard C++ with no dependencies.☆326Updated 4 months ago
- Collection of hypervisor detections☆261Updated 11 months ago
- LLVM fork with explicit compatibility with MSVC 2022 features.☆327Updated 4 months ago
- Demo proof of concept for shadow regions, and implementation of HyperDeceit.☆296Updated 2 years ago
- Bootkit for Windows Sandbox to disable DSE/PatchGuard.☆301Updated 10 months ago
- A library to develop kernel level Windows payloads for post HVCI era☆443Updated 4 years ago
- Operating System Design Review: A systemic analysis of modern systems architecture☆320Updated 6 months ago
- Simple x86/x64 Assembler/Disassembler/Emulator☆187Updated last year
- The Windows Research Kernel (WRK)☆207Updated 8 years ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆354Updated 3 years ago
- Static deobfuscator for Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.☆296Updated last year
- A collection of various vulnerable (mostly physical memory exposing) drivers.☆400Updated 3 years ago
- A modern c++ implementation of windows heavens gate☆229Updated 4 years ago
- PE bin2bin obfuscator☆764Updated 4 months ago
- The best theme for x64dbg!☆88Updated 3 years ago
- A DTrace on Windows Reimplementation☆352Updated 6 months ago
- msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.☆152Updated last year
- Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks☆378Updated last month