eBPF-For-Windows extension to provide access to Windows kernel functionality
☆39Feb 21, 2026Updated last week
Alternatives and similar repositories for ntosebpfext
Users that are interested in ntosebpfext are comparing it to the libraries listed below
Sorting:
- Networking related test tools for Windows. Relevant for anyone who is interested in Windows networking.☆31Updated this week
- Simple command line tool to enumerate loaded WFP callout drivers☆10Feb 2, 2024Updated 2 years ago
- A simple kernel mode driver that hooks some values at the KUSER_SHARED_DATA structure.☆27Jan 7, 2020Updated 6 years ago
- Set of scripts for performance investigations on Windows.☆31Dec 17, 2025Updated 2 months ago
- A short proof-of-concept how to decrypt ssl traffic WITHOUT the server private TLS certificate☆16Oct 16, 2018Updated 7 years ago
- A driver that supports communication between a Windows guest and HyperWin☆15Jan 6, 2021Updated 5 years ago
- Dumps information about all the callback objects found in a dump file and the functions registered for them☆37Oct 21, 2020Updated 5 years ago
- ☆21Sep 6, 2018Updated 7 years ago
- Windows KExec☆25Apr 20, 2010Updated 15 years ago
- Re-implementation of Apple's Continuity Protocol☆19Dec 5, 2019Updated 6 years ago
- Windows system repair tool☆18Jun 2, 2021Updated 4 years ago
- Windows NT port of 'Main is usually a function. So then when is it not?'☆27Mar 11, 2024Updated last year
- Data Obfuscation for C/C++ Code Based on Residue Number Coding (RNC)☆24May 20, 2021Updated 4 years ago
- XPN's RpcEnum but based on IDA instead of Ghidra☆21Aug 17, 2019Updated 6 years ago
- ☆23Mar 6, 2023Updated 2 years ago
- .NET Library to extracts the root domain, subdomain name, and top level domain from a host name using the Public Suffix List☆22Dec 7, 2023Updated 2 years ago
- Lightweight WINAPI tracing with Pin☆27Aug 22, 2019Updated 6 years ago
- SysmonX - An Augmented Drop-In Replacement of Sysmon☆216Sep 17, 2019Updated 6 years ago
- Rust bindings to the System Informer's (formerly known as Process Hacker) "phnt" native Windows headers☆50Jun 1, 2025Updated 9 months ago
- HTTP/HTTPS/DNS inspector (windows driver)☆27Feb 20, 2019Updated 7 years ago
- Windows file system testing. Inspired by the FreeBSD fstest, but written from scratch to work on Windows.☆21May 8, 2025Updated 9 months ago
- libipt - an Intel(R) Processor Trace decoder library☆18Apr 7, 2017Updated 8 years ago
- ☆25Jan 25, 2024Updated 2 years ago
- A POC for Windows Extension Host hooking☆24Jul 13, 2019Updated 6 years ago
- Proof of concepts demonstrating some aspects of the Windows kernel shadow stack mitigation.☆54Jun 2, 2025Updated 8 months ago
- Native opaque predicate cleaner plugin for Binary Ninja☆46Updated this week
- One way of creating application that builds as Windows service and Linux daemon☆26Sep 14, 2018Updated 7 years ago
- Hyper-V Research is trendy now�☆198May 6, 2024Updated last year
- Sysmon shenanigans☆66Oct 9, 2020Updated 5 years ago
- Monitor ETW events for Windows process mitigation policies, with stack traces☆31Oct 7, 2022Updated 3 years ago
- A session-0 capable dll injection utility☆76Apr 18, 2018Updated 7 years ago
- Tools and documents for working with Microsoft PDB files, in Rust☆55Updated this week
- hentai game manager, mostly for f95, but might add other sites later☆11Nov 4, 2025Updated 3 months ago
- KLEESpectre is a symbolic execution engine with speculation semantic and cache modelling☆36Feb 28, 2020Updated 6 years ago
- Debugging companion library for the ChakraCore JavaScript engine☆35Jun 12, 2023Updated 2 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆66Apr 4, 2020Updated 5 years ago
- Debugger extension for the Debugging Tools for Windows (WinDbg, KD, CDB, NTSD).☆69Nov 14, 2016Updated 9 years ago
- Named pipe I/O ETW provider for Windows☆71Jul 24, 2020Updated 5 years ago
- CVE-2020-0890 | Windows Hyper-V Denial of Service Vulnerability proof-of-concept code☆37Sep 8, 2020Updated 5 years ago