☆176Oct 2, 2024Updated last year
Alternatives and similar repositories for headers
Users that are interested in headers are comparing it to the libraries listed below
Sorting:
- ☆131Oct 2, 2024Updated last year
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆66Apr 4, 2020Updated 5 years ago
- windbg plugin for win32k debugging☆75Oct 14, 2019Updated 6 years ago
- C++ Exceptions in Windows Drivers☆222Dec 21, 2020Updated 5 years ago
- Collect different versions of Crucial modules.☆146Jul 11, 2024Updated last year
- Map memory to user space and manipulate user memory, using capmon☆24Nov 3, 2018Updated 7 years ago
- Standalone program to download PDB Symbol files for debugging without WDK☆80Jun 20, 2019Updated 6 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆76Jun 8, 2019Updated 6 years ago
- Windows Driver Kit Extesion Header (Undoc)☆135Nov 9, 2021Updated 4 years ago
- Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.☆663Jan 28, 2025Updated last year
- kHypervisor is a lightweight bluepill-like nested VMM for Windows, it provides and emulating a basic function of Intel VT-x☆446Nov 29, 2021Updated 4 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆241Nov 6, 2019Updated 6 years ago
- A driver that hooks C: volume using symbolic link callback to track all FS access to the volume☆109Apr 24, 2020Updated 5 years ago
- A branch-monitor-based solution for process monitoring.☆138Feb 9, 2020Updated 6 years ago
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆146Feb 23, 2019Updated 7 years ago
- init☆14Mar 16, 2020Updated 6 years ago
- VT-based PCI device monitor (SPI)☆158Oct 29, 2020Updated 5 years ago
- kernel pool windbg extension☆83Jul 23, 2015Updated 10 years ago
- Confirms the capability of Hardware-Accelerated Virtualization Technology.☆10Feb 26, 2026Updated 3 weeks ago
- Toolkit for Hyper-V security research☆158Mar 7, 2022Updated 4 years ago
- pdbex is a utility for reconstructing structures and unions from the PDB into compilable C headers☆895Jun 18, 2025Updated 9 months ago
- usermode standalone kernel interface☆111Jul 9, 2018Updated 7 years ago
- An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.☆151Mar 2, 2023Updated 3 years ago
- ☆36Oct 29, 2020Updated 5 years ago
- Demonstrate the new FileDispositionInfoEx behavior☆15Nov 6, 2017Updated 8 years ago
- Windows tool box library☆68Dec 29, 2017Updated 8 years ago
- ☆125May 23, 2020Updated 5 years ago
- LLVM based devirtualization PoC’s.☆21Dec 11, 2021Updated 4 years ago
- A driverless driver that is supposed to be manually mapped, usually by using TDL exploit. The driver shows how to read/write to any proce…☆22Oct 27, 2017Updated 8 years ago
- Windows kernel PDB data parsed into YAML☆42Nov 2, 2025Updated 4 months ago
- codes for my blog post: https://secrary.com/Random/InstrumentationCallback/☆182Nov 30, 2017Updated 8 years ago
- ☆28Nov 20, 2017Updated 8 years ago
- Research on Windows Kernel Executive Callback Objects☆316Feb 22, 2020Updated 6 years ago
- Some garbage drivers written for getting started☆65Dec 31, 2019Updated 6 years ago
- IntelVT-X nice feature -> tool☆95Jul 2, 2014Updated 11 years ago
- ☆14Oct 5, 2019Updated 6 years ago
- Simple driver to register all available process, thread, image, Registry, and Object callbacks☆124Oct 5, 2017Updated 8 years ago
- Syscall Monitor is a system monitor program (like Sysinternal's Process Monitor) using Intel VT-X/EPT for Windows7+☆748Jun 26, 2017Updated 8 years ago
- Intel VT-x based hypervisor aiming to provide a thin VM-exit filtering platform on Windows.☆1,734Nov 24, 2023Updated 2 years ago