Alternatives and similar repositories for windows-nt-file-system-internals-book

Users that are interested in windows-nt-file-system-internals-book are comparing it to the libraries listed below

• gabriellandau / CISpotter
  Code Integrity Violation Spotter
  ☆17Updated last year
• OSRDrivers / WDF-I
  Writing WDF Drivers I: Core Concepts Lab Material
  ☆53Updated 2 years ago
• alfarom256 / MinifilterResearch
  ☆16Updated 3 years ago
• omerk2511 / NotifyRoutinesResearch
  A research project about Windows notify routines.
  ☆38Updated 5 years ago
• ioncodes / rw
  allowing um r/w through km from um ioctl ™
  ☆11Updated 3 years ago
• hfiref0x / Misc
  Miscellaneous Code and Docs
  ☆84Updated 4 months ago
• Fyyre / directntapi
  DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10
  ☆53Updated last year
• mtth-bfft / win32k-mitigation
  A test project to try the new win32k.sys system call filtering mitigation in Windows 10
  ☆15Updated 6 years ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆27Updated 2 years ago
• Zhuagenborn / Windows-x86-Debugger
  🐞 A simple Windows x86 debugging framework written in C++20 that supports software breakpoints and hardware breakpoints. It can be used …
  ☆13Updated 7 months ago
• jxy-s / vfdynf
  Application Verifier Dynamic Fault Injection
  ☆39Updated 2 months ago
• yjugl / mitimon
  Monitor ETW events for Windows process mitigation policies, with stack traces
  ☆31Updated 3 years ago
• 0xMegaByte / COM-Explained
  ☆26Updated 3 years ago
• hasherezade / pe_utils
  A set of small utilities, helpers for PIN tracers
  ☆34Updated last month
• tandasat / ia32-doc
  IA32-doc is a project which aims to put as many definitions from the Intel Manual into machine-processable format as possible
  ☆17Updated 3 years ago
• OSRDrivers / windbg-exts
  Various WinDbg extensions and scripts
  ☆31Updated 7 years ago
• hugsy / modern-cpp-windows-driver-template
  Windows driver template, using C++20 & cmake & GithubActions
  ☆23Updated last year
• JKornev / NTlib
  Static library and headers for linking your software with ntdll.dll
  ☆37Updated 5 years ago
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆86Updated 5 years ago
• therealdreg / symseghelper
  Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode
  ☆19Updated 2 years ago
• Lima-X / XOrCryptEx
  XOrCryptEx lightweight C Utility/Algorithm
  ☆11Updated 3 years ago
• therealdreg / auxlib
  Full reversing of the Microsoft Auxiliary Windows API Library and ported to C
  ☆24Updated 11 months ago
• repnz / windows-imports-searcher
  Support Windows OS Reversing by searching easily for references to functions across many DLLs
  ☆32Updated 3 years ago
• gmh5225 / Driver-SoulExtraction
  SoulExtraction is a windows driver library for extracting cert information in windows drivers
  ☆25Updated 2 years ago
• 0xcpu / exthost
  A POC for Windows Extension Host hooking
  ☆24Updated 6 years ago
• therealdreg / Win.Cerdalux
  WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs
  ☆18Updated 2 years ago
• therealdreg / pdbdump_bochs
  Dump PDB Symbols including support for Bochs Debugging Format (with wine support)
  ☆14Updated 2 years ago
• Air14 / SmmLoader
  Runtime smm module loader
  ☆34Updated 2 years ago
• OSRDrivers / Inverted
  Example WDF/KMDF driver and test app demonstrating the "inverted call model"
  ☆37Updated 5 years ago
• 474172261 / windows-CET
  ☆13Updated 2 years ago