minglinchen/WinKernelDev external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

minglinchen/WinKernelDev

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/minglinchen/WinKernelDev)

Close

minglinchen / WinKernelDevView on GitHubMore

• External links
• Readme badge

☆139Mar 21, 2020Updated 5 years ago

Alternatives and similar repositories for WinKernelDev

Users that are interested in WinKernelDev are comparing it to the libraries listed below

• minglinchen / Win-Drv

  View on GitHub
  windows内核安全与驱动开发代码
  ☆12Apr 4, 2020Updated 5 years ago
• Yyyyshen / WindowsKernelPrograming

  View on GitHub
  《Windows内核编程》学习
  ☆62Feb 23, 2021Updated 5 years ago
• HARM4Y / Minifilter

  View on GitHub
  参考《Windows内核安全与驱动开发》的透明加密解密Minifilter
  ☆75May 29, 2022Updated 3 years ago
• FaEryICE / MemScanner

  View on GitHub
  Analyze Windows x64 Kernel Memory Layout
  ☆129Nov 19, 2020Updated 5 years ago
• 9176324 / Daat

  View on GitHub
  a simple intel vt code both support x86 & x64. PatchGuard monitor.
  ☆77Oct 28, 2021Updated 4 years ago
• basketwill / Sysmon_reverse

  View on GitHub
  ☆174Sep 9, 2020Updated 5 years ago
• HARM4Y / FOKS-TROT

  View on GitHub
  It's a minifilter used for transparent-encrypting.
  ☆343Jul 28, 2025Updated 7 months ago
• sgabe / SymlinkProtect

  View on GitHub
  File system minifilter driver for Windows to block symbolic link attacks.
  ☆51Dec 16, 2020Updated 5 years ago
• MoePus / AntiBEAntiDllInjection

  View on GitHub
  [POC Detected]Bypass BE Anti Dll Injection (POC/Need Driver)
  ☆17Mar 30, 2020Updated 5 years ago
• wanttobeno / KProtect

  View on GitHub
  Driver protect 驱动保护
  ☆46Apr 23, 2020Updated 5 years ago
• yjugl / mitimon

  View on GitHub
  Monitor ETW events for Windows process mitigation policies, with stack traces
  ☆31Oct 7, 2022Updated 3 years ago
• fanggai / loadableDiskFilter

  View on GitHub
  a loadable windows disk filter driver
  ☆16Nov 24, 2012Updated 13 years ago
• wbenny / EtwConsumerNT

  View on GitHub
  Simple project that demonstrates how an ETW consumer can be created just by using NTDLL
  ☆146Feb 23, 2019Updated 7 years ago
• uf0o / windows-ps-callbacks-experiments

  View on GitHub
  Files for http://blog.deniable.org/posts/windows-callbacks/
  ☆77Feb 26, 2022Updated 4 years ago
• zodiacon / windowskernelprogrammingbook2e

  View on GitHub
  Samples for the book Windows Kernel Programming, 2nd edition
  ☆373Aug 2, 2025Updated 6 months ago
• FiYHer / driver_callback_bypass_1909

  View on GitHub
  研究和移除各种内核回调,在anti anti cheat的路上越走越远
  ☆183Aug 26, 2022Updated 3 years ago
• 0xhido / BlueLight

  View on GitHub
  Open-source EDR kernel-component for system monitoring and DLL injection
  ☆33Nov 14, 2020Updated 5 years ago
• zodiacon / ObjDir

  View on GitHub
  Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.
  ☆22Sep 4, 2023Updated 2 years ago
• huoji120 / MakeInfinityHookGreatAgain

  View on GitHub
  让Etwhook再次伟大! Make InfinityHook Great Again!
  ☆147Jun 24, 2021Updated 4 years ago
• DragonQuestHero / Medusa

  View on GitHub
  Radical Windows ARK
  ☆251Apr 18, 2025Updated 10 months ago
• 0mWindyBug / WFPCalloutReserach

  View on GitHub
  research revolving the windows filtering platform callout mechanism
  ☆39May 26, 2024Updated last year
• jnastarot / cleancall

  View on GitHub
  Library for using direct system calls
  ☆36Jan 30, 2025Updated last year
• KernelPanic-OpenSource / Win2K3_NT_drivers

  View on GitHub
  Windows Server 2K3 NT 5
  ☆12Apr 14, 2021Updated 4 years ago
• zhuhuibeishadiao / MiniVTx64

  View on GitHub
  Intel Virtualization Technology demo
  ☆73Oct 15, 2016Updated 9 years ago
• zhuhuibeishadiao / PatchGuardResearch

  View on GitHub
  win10 pgContext dynamic dump (btc version)
  ☆110Jan 15, 2020Updated 6 years ago
• AzureGreen / ArkProtect

  View on GitHub
  An Ark tool project，run on Win7 x86/x64
  ☆118Jul 11, 2017Updated 8 years ago
• PspExitThread / SKT64

  View on GitHub
  Anti-Rootkit & System kernel management tool
  ☆51Jan 24, 2026Updated last month
• turingcompl33t / windows-internals

  View on GitHub
  Exploring Windows Internals.
  ☆64Aug 18, 2020Updated 5 years ago
• Deputation / syscall_extractor

  View on GitHub
  A C++ syscall ID extractor for Windows. Developed, debugged and tested on 20H2.
  ☆21May 25, 2021Updated 4 years ago
• xue-blood / tdifw

  View on GitHub
  copy of tdifw lib
  ☆10Jun 15, 2017Updated 8 years ago
• AzureGreen / ArkToolDrv

  View on GitHub
  An ark tool's driver
  ☆40May 11, 2017Updated 8 years ago
• Eva1216 / MagicWall

  View on GitHub
  ☆48Nov 7, 2018Updated 7 years ago
• TimelifeCzy / kHypervisorBasic

  View on GitHub
  VT Hook
  ☆51Jul 2, 2024Updated last year
• DearXiaoGui / InfinityHookPro-main

  View on GitHub
  ☆56Nov 21, 2022Updated 3 years ago
• Sqdwr / HideDriver

  View on GitHub
  之前那份是7600的，每次编译搞得好麻烦。更新一个VS2017可以直接编译的。
  ☆154Jun 5, 2019Updated 6 years ago
• FiYHer / InfinityHookPro

  View on GitHub
  InfinityHookPro Win7 -> Win11 latest
  ☆551Feb 7, 2023Updated 3 years ago
• junjiexing / libredirect

  View on GitHub
  使用WFP重定向socket链接
  ☆65May 17, 2020Updated 5 years ago
• KelvinMsft / DeviceMon

  View on GitHub
  VT-based PCI device monitor (SPI)
  ☆158Oct 29, 2020Updated 5 years ago
• theSecHunter / Hades-Windows

  View on GitHub
  Hades HIDS/HIPS for Windows
  ☆307Oct 10, 2025Updated 4 months ago