☆123Feb 3, 2026Updated 3 months ago
Alternatives and similar repositories for Windows-Internals-Learning-Resources
Users that are interested in Windows-Internals-Learning-Resources are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- x86/x64 Ring 0/-2 System Freezer/Debugger☆120May 21, 2025Updated 11 months ago
- Local & remote Windows DLL Proxying☆174Jun 17, 2024Updated last year
- ALPChecker - a tool to detect spoofing and blinding attacks on the ALPC interaction☆13Feb 13, 2023Updated 3 years ago
- Hardcore Debugging☆938Apr 9, 2026Updated 3 weeks ago
- I will be uploading all the codes which I created with the help either opensource projects or blogs. This is a step by step EDR learning …☆287Aug 1, 2025Updated 9 months ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- 🐞 A simple Windows x86 debugging framework written in C++20 that supports software breakpoints and hardware breakpoints. It can be used …☆13Mar 30, 2025Updated last year
- a PE Loader and Windows API tracer. Useful in malware analysis.☆143Sep 19, 2022Updated 3 years ago
- Operating System Design Review: A systematic analysis of modern systems architecture☆342Jan 11, 2026Updated 3 months ago
- Useful scripts for WinDbg using the debugger data model☆432Mar 27, 2024Updated 2 years ago
- Extract data of TTD trace file to a minidump☆30Jul 31, 2023Updated 2 years ago
- An interactive shell to spoof some LOLBins command line☆187Jan 27, 2024Updated 2 years ago
- Cmdlets for capturing Windows Events☆14Mar 11, 2022Updated 4 years ago
- ☆74Jul 2, 2024Updated last year
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆125Jul 12, 2024Updated last year
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- PoCs for Kernelmode rootkit techniques research.☆436Mar 25, 2026Updated last month
- SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool☆58Dec 29, 2024Updated last year
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆39Jul 12, 2024Updated last year
- Decrypt Veeam database passwords☆224Dec 8, 2025Updated 4 months ago
- Windows 常用版本内核文件收集☆13Sep 19, 2023Updated 2 years ago
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆135Feb 1, 2026Updated 3 months ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆68Aug 11, 2023Updated 2 years ago
- anti-ransomware file-system filter☆70Sep 3, 2024Updated last year
- A tool that is used to hunt vulnerabilities in x64 WDM drivers☆457Dec 7, 2025Updated 4 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege☆227Nov 23, 2023Updated 2 years ago
- Atlassian Companion RCE Vulnerability Proof of Concept☆25Dec 15, 2023Updated 2 years ago
- ☆187Apr 24, 2025Updated last year
- A DTrace on Windows Reimplementation☆373Apr 22, 2026Updated last week
- a tool used to analyze and monitor in named pipes☆196Oct 27, 2024Updated last year
- Advanced test for proxy & waf☆14Feb 10, 2026Updated 2 months ago
- Burp extension used to snip any header from all the requests.☆23Nov 12, 2023Updated 2 years ago
- Sample for Creating a new kernel object type and supporting API☆28Sep 7, 2024Updated last year
- Analyse MSI files for vulnerabilities☆143Aug 30, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- To audit the security of read-only domain controllers☆119Nov 27, 2023Updated 2 years ago
- ACL Viewer for Windows☆133May 4, 2025Updated last year
- Interceptor is a kernel driver focused on tampering with EDR/AV solutions in kernel space☆135Jan 2, 2023Updated 3 years ago
- Writing WDF Drivers I: Core Concepts Lab Material☆54Feb 24, 2026Updated 2 months ago
- ☆26Nov 7, 2023Updated 2 years ago
- NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…☆236Feb 12, 2025Updated last year
- ☆27May 1, 2023Updated 3 years ago