Alternatives and similar repositories for ntosebpfext

Users that are interested in ntosebpfext are comparing it to the libraries listed below

• zodiacon / InfStudio
  INF Studio for easier working with driver installation files
  ☆38Updated last year
• mstange / symsrv
  Download pdbs from symbol servers and cache locally, parse symbol paths from env vars
  ☆22Updated 2 months ago
• microsoft / pdb-rs
  Tools and documents for working with Microsoft PDB files, in Rust
  ☆24Updated 3 weeks ago
• zodiacon / objdir-rs
  Rust version of the objdir tool
  ☆13Updated last year
• TimMisiak / windup
  WinDbg installer/updater
  ☆41Updated last year
• microsoft / usersim
  ☆83Updated 2 weeks ago
• POPFD / cascade
  A thin introspection hypervisor framework that allows for low level resource manipulation.
  ☆13Updated last year
• Air14 / SmmLoader
  Runtime smm module loader
  ☆33Updated 2 years ago
• zodiacon / KernelObjectView
  View handles and object for each object type
  ☆64Updated 5 years ago
• insula-rs / libwhp
  Windows Hypervisor Platform Rust crate
  ☆59Updated 4 years ago
• gerhart01 / Hyper-V-Tools
  Different tools for Microsoft Hyper-V researching
  ☆57Updated 11 months ago
• Wenzel / vid-sys
  Rust unsafe bindings for Vid API (Hyper-V)
  ☆20Updated 3 months ago
• zodiacon / winsta
  Show Window Stations, Desktops and top level windows
  ☆15Updated last year
• microsoft / ebpf-for-windows-demo
  This repository contains the demo material built on top of ebpf-for-windows platform.
  ☆43Updated 8 months ago
• therealdreg / symseghelper
  Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode
  ☆19Updated last year
• Rantanen / ghidra-minidump-loader
  Windows Minidump loader for Ghidra
  ☆29Updated 2 years ago
• NoMercy-ac / SystemHealthCheck
  Windows system repair tool
  ☆20Updated 4 years ago
• yardenshafir / DpcWait
  Driver demonstrating how to register a DPC to asynchronously wait on an object
  ☆49Updated 4 years ago
• Gui774ume / etrace
  ETrace is a syscall tracing utility powered by eBPF
  ☆25Updated 2 years ago
• microsoft / ETW
  Event Tracing for Windows tools and samples
  ☆25Updated 4 months ago
• n4r1b / win-drvutils-rs
  Collection of Windows Driver Utils
  ☆11Updated last year
• elastic / die-rust
  Native Rust bindings for @horsicq's Detect-It-Easy
  ☆15Updated 4 months ago
• mrexodia / DisableParallelLoader
  Plugin for x64dbg to disable parallel loading of dependencies
  ☆19Updated 2 years ago
• zodiacon / PEParser
  Portable Executable parsing library, used by PEExplorer. Also available as a nuget package
  ☆36Updated 7 years ago
• BehroozAbbassi / VmwpMonitor
  ☆40Updated 3 years ago
• epakskape / whpexp
  Experiments involving the Windows Hypervisor Platform
  ☆23Updated 4 years ago
• zodiacon / DebugHelp
  .NET wrapper for dbghelp.dll
  ☆21Updated 5 years ago
• Vector35 / idb-parser-rs
  IDA Database Parser for Rust
  ☆25Updated 8 months ago
• microsoft / win-net-test
  Networking related test tools for Windows. Relevant for anyone who is interested in Windows networking.
  ☆29Updated 2 weeks ago
• awakecoding / VMBusPipe
  Hyper-V VMBusPipe Reversing
  ☆19Updated 4 years ago