patrickmatula/Windows-Internals-Learning-Resources external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

patrickmatula/Windows-Internals-Learning-Resources

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/patrickmatula/Windows-Internals-Learning-Resources)

Close

patrickmatula / Windows-Internals-Learning-ResourcesView on GitHubMore

• External links
• Readme badge

☆125Feb 3, 2026Updated 4 months ago

Alternatives and similar repositories for Windows-Internals-Learning-Resources

Users that are interested in Windows-Internals-Learning-Resources are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• behnamshamshirsaz / CrackMaster

  View on GitHub
  x86/x64 Ring 0/-2 System Freezer/Debugger
  ☆119May 21, 2025Updated last year
• synacktiv / DLHell

  View on GitHub
  Local & remote Windows DLL Proxying
  ☆173Jun 17, 2024Updated last year
• AnastasiKro / ALPChecker

  View on GitHub
  ALPChecker - a tool to detect spoofing and blinding attacks on the ALPC interaction
  ☆13Feb 13, 2023Updated 3 years ago
• DebugPrivilege / InsightEngineering

  View on GitHub
  Hardcore Debugging
  ☆944Apr 9, 2026Updated 2 months ago
• reveng007 / Learning-EDR-and-EDR_Evasion

  View on GitHub
  I will be uploading all the codes which I created with the help either opensource projects or blogs. This is a step by step EDR learning …
  ☆287Aug 1, 2025Updated 10 months ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• Zhuagenborn / Windows-x86-Debugger

  View on GitHub
  🐞 A simple Windows x86 debugging framework written in C++20 that supports software breakpoints and hardware breakpoints. It can be used …
  ☆13Mar 30, 2025Updated last year
• enkomio / thematrix

  View on GitHub
  a PE Loader and Windows API tracer. Useful in malware analysis.
  ☆143Sep 19, 2022Updated 3 years ago
• ElliotKillick / operating-system-design-review

  View on GitHub
  Operating System Design Review: A systematic analysis of modern systems architecture
  ☆342Jan 11, 2026Updated 5 months ago
• yardenshafir / WinDbg_Scripts

  View on GitHub
  Useful scripts for WinDbg using the debugger data model
  ☆436Mar 27, 2024Updated 2 years ago
• airbus-cert / ttd2mdmp

  View on GitHub
  Extract data of TTD trace file to a minidump
  ☆31Jul 31, 2023Updated 2 years ago
• itaymigdal / LOLSpoof

  View on GitHub
  An interactive shell to spoof some LOLBins command line
  ☆187Jan 27, 2024Updated 2 years ago
• SadProcessor / EzETW

  View on GitHub
  Cmdlets for capturing Windows Events
  ☆14Mar 11, 2022Updated 4 years ago
• hugsy / recon_2024_windbg_workshop

  View on GitHub
  ☆74Jul 2, 2024Updated last year
• YoavLevi / IAT-Tracer

  View on GitHub
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆126Jul 12, 2024Updated last year
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• daem0nc0re / VectorKernel

  View on GitHub
  PoCs for Kernelmode rootkit techniques research.
  ☆441Mar 25, 2026Updated 2 months ago
• malsearchs / Static-Reverse-Engineering-SRE

  View on GitHub
  SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool
  ☆58Dec 29, 2024Updated last year
• cpu0x00 / EternelSuspention

  View on GitHub
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆39Jul 12, 2024Updated last year
• S3cur3Th1sSh1t / SharpVeeamDecryptor

  View on GitHub
  Decrypt Veeam database passwords
  ☆225Dec 8, 2025Updated 6 months ago
• 0vercl0k / snapshot

  View on GitHub
  WinDbg extension written in Rust to dump the CPU / memory state of a running VM
  ☆138Feb 1, 2026Updated 4 months ago
• therealdreg / ida_vmware_windows_gdb

  View on GitHub
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆68Aug 11, 2023Updated 2 years ago
• 0mWindyBug / RansomGuard

  View on GitHub
  anti-ransomware file-system filter
  ☆71Sep 3, 2024Updated last year
• zeze-zeze / ioctlance

  View on GitHub
  A tool that is used to hunt vulnerabilities in x64 WDM drivers
  ☆465Dec 7, 2025Updated 6 months ago
• sokaRepo / CoercedPotatoRDLL

  View on GitHub
  Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege
  ☆227Nov 23, 2023Updated 2 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• ron-imperva / CVE-2023-22524

  View on GitHub
  Atlassian Companion RCE Vulnerability Proof of Concept
  ☆25Dec 15, 2023Updated 2 years ago
• zeze-zeze / NamedPipeMaster

  View on GitHub
  a tool used to analyze and monitor in named pipes
  ☆200Oct 27, 2024Updated last year
• mandiant / STrace

  View on GitHub
  A DTrace on Windows Reimplementation
  ☆373May 28, 2026Updated 2 weeks ago
• jonny-jhnson / ETWInspector

  View on GitHub
  ☆207May 10, 2026Updated last month
• geeknik / test-proxy

  View on GitHub
  Advanced test for proxy & waf
  ☆14Feb 10, 2026Updated 4 months ago
• e1abrador / Burp-headerSnipper

  View on GitHub
  Burp extension used to snip any header from all the requests.
  ☆24Nov 12, 2023Updated 2 years ago
• zodiacon / KObjects

  View on GitHub
  Sample for Creating a new kernel object type and supporting API
  ☆28Sep 7, 2024Updated last year
• CICADA8-Research / MyMSIAnalyzer

  View on GitHub
  Analyse MSI files for vulnerabilities
  ☆143Aug 30, 2024Updated last year
• wh0amitz / SharpRODC

  View on GitHub
  To audit the security of read-only domain controllers
  ☆119Nov 27, 2023Updated 2 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• WildByDesign / ACLViewer

  View on GitHub
  ACL Viewer for Windows
  ☆133May 4, 2025Updated last year
• NVISOsecurity / Interceptor

  View on GitHub
  Interceptor is a kernel driver focused on tampering with EDR/AV solutions in kernel space
  ☆135Jan 2, 2023Updated 3 years ago
• redcivet / GithubC2

  View on GitHub
  ☆25Nov 7, 2023Updated 2 years ago
• OSRDrivers / WDF-I

  View on GitHub
  Writing WDF Drivers I: Core Concepts Lab Material
  ☆54Feb 24, 2026Updated 3 months ago
• BlackSnufkin / NyxInvoke

  View on GitHub
  NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…
  ☆238Feb 12, 2025Updated last year
• ADPunisher / OwnershipStealer

  View on GitHub
  ☆27May 1, 2023Updated 3 years ago
• georgi-i / winevt_logs_analysis

  View on GitHub
  Searching .evtx logs for remote connections
  ☆24Jul 6, 2023Updated 2 years ago