☆13Jan 21, 2019Updated 7 years ago
Alternatives and similar repositories for NtCreateUserProcess_
Users that are interested in NtCreateUserProcess_ are comparing it to the libraries listed below
Sorting:
- R3劫持所有异常☆15Jan 4, 2021Updated 5 years ago
- Three Tiny Examples of Directly Using Vista's NtCreateUserProcess☆89Nov 9, 2015Updated 10 years ago
- 巨硬☆17Oct 4, 2023Updated 2 years ago
- The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers☆34Mar 13, 2017Updated 9 years ago
- Improvised json-based configurable Windows sandbox☆11Sep 29, 2020Updated 5 years ago
- Call NtCreateUserProcess directly as normal.☆77May 17, 2022Updated 3 years ago
- Some eternal WIP stuff :)☆21Nov 18, 2025Updated 4 months ago
- Monitor ETW events for Windows process mitigation policies, with stack traces☆31Oct 7, 2022Updated 3 years ago
- ☆61Oct 24, 2025Updated 4 months ago
- d☆14Sep 5, 2025Updated 6 months ago
- Map memory to user space and manipulate user memory, using capmon☆24Nov 3, 2018Updated 7 years ago
- Library for reading IDA Pro databases.☆29May 1, 2021Updated 4 years ago
- Public rules and samples for various automations through LimaCharlie.io☆14Dec 16, 2021Updated 4 years ago
- Scripts to prepare Windows system for debugging.☆31Jan 5, 2021Updated 5 years ago
- HAXM hypervisor client☆18Nov 30, 2018Updated 7 years ago
- Reverse Engineering☆13Jun 22, 2017Updated 8 years ago
- Interprocess communication library, providing the ability to call functions from each other☆20Oct 3, 2019Updated 6 years ago
- Code for blog written at 0xdarkvortex.dev Red Team TTPs Part 2☆19Oct 8, 2020Updated 5 years ago
- This is a simple tool to dump all the reparse points on an NTFS volume.☆33Aug 20, 2020Updated 5 years ago
- Libraries written in inline assembly☆19Aug 7, 2023Updated 2 years ago
- Kernel Debugging over LAN cable for Windows XP/2003 x32☆36Jan 2, 2021Updated 5 years ago
- ☆34Jul 28, 2018Updated 7 years ago
- a program that makes dos idle while doing nothing☆11Nov 13, 2018Updated 7 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆121Feb 8, 2022Updated 4 years ago
- A tool to create COM class/interface relationships in neo4j☆50Oct 12, 2022Updated 3 years ago
- A little WinDbg extension to help dump the state of Win32k Type Isolation structures.☆38Feb 2, 2018Updated 8 years ago
- "Positive☆Desktop" is reworked virtual desktop utility for Windows 10 & 11.☆10Nov 20, 2023Updated 2 years ago
- A class to gather information about a process, its threads and modules.☆23Mar 23, 2020Updated 5 years ago
- A lexer and parser for Sleep☆20Feb 20, 2026Updated last month
- A simple SSA-based compiler.☆17Apr 29, 2024Updated last year
- ☆29Dec 29, 2022Updated 3 years ago
- Code virtualizer☆26May 11, 2016Updated 9 years ago
- Process / thread-level system call tracer for Windows 7 / 8 / 2008 / 2012☆21May 19, 2015Updated 10 years ago
- Savoir is a tool to perform tasks during internal security assessment☆19Jun 27, 2022Updated 3 years ago
- map driver to memory☆26Aug 26, 2018Updated 7 years ago
- A windbg extension for ASLR/DEP/SafeSEH check☆28May 19, 2018Updated 7 years ago
- ☆21Feb 19, 2021Updated 5 years ago
- Instrumenting a binary without source code to bypass anti-debug checks☆38Sep 25, 2021Updated 4 years ago
- A high performance thread-safe implementation of hash map for Golang (accent on high throughput, not at latency)☆21Jun 20, 2021Updated 4 years ago