utshina / noahx

Related projects: ⓘ

• therealdreg / auxlib
  Full reversing of the Microsoft Auxiliary Windows API Library and ported to C
  ☆23Updated last year
• sherpya / nloader
  Native win32 executables loader
  ☆52Updated 6 years ago
• OSRDrivers / windbg-exts
  Various WinDbg extensions and scripts
  ☆31Updated 6 years ago
• thecatkitty / nt-native
  An example of Windows NT Native API application and kernel driver
  ☆20Updated 4 years ago
• andrew-boyarshin / LoaderWatch
  Windows 10 PE image loader (LDR) NTDLL component toolbox
  ☆40Updated 4 years ago
• Mattiwatti / WinMain-is-usually-a-function
  Windows NT port of 'Main is usually a function. So then when is it not?'
  ☆24Updated 6 months ago
• StrikerX3 / whvpclient
  Windows Hypervisor Platform client
  ☆28Updated 6 years ago
• OSRDrivers / penter
  penter hook example and driver time recorder
  ☆28Updated 6 years ago
• Fyyre / directntapi
  DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10
  ☆49Updated 6 months ago
• zodiacon / ndcoslo2019
  NDC Oslo 2019 slides and demos
  ☆32Updated 3 years ago
• SinaKarvandi / Pinitor
  An API Monitor based on Instrumentation
  ☆40Updated 6 years ago
• zodiacon / DeviceExplorer
  ☆38Updated last year
• arizvisa / ndk
  A local copy of Alex Ionescu's seemingly abandoned native-nt-toolkit project containing knowledge inherited from the ReactOS project.
  ☆53Updated 4 years ago
• nlog2n / x86obfuscator
  a binary x86win32 code obfuscator using virtual machine
  ☆32Updated 7 years ago
• kukrimate / grr
  AMD SVM hypervisor rootkit proof of concept
  ☆39Updated 11 months ago
• Air14 / SmmLoader
  Runtime smm module loader
  ☆30Updated last year
• jrudolph / bootpgm
  Demonstration of a Windows Boot Program using Window's Native API
  ☆30Updated 5 years ago
• coderforlife / bmzip
  Decompresses and compresses the Windows bootmgr (Vista, 7, and 8)
  ☆22Updated 8 years ago
• yardenshafir / DpcWait
  Driver demonstrating how to register a DPC to asynchronously wait on an object
  ☆45Updated 3 years ago
• zodiacon / ErrorLookup
  Simple error lookup for Win32 and NTSTATUS errors
  ☆17Updated 5 years ago
• ievukas / ntos-boot
  The bootloader for the latest versions of Windows NT, Windows 8 to Windows 11.
  ☆19Updated 4 years ago
• AndreyBazhan / DbgExt
  Debugger extension for the Debugging Tools for Windows (WinDbg, KD, CDB, NTSD).
  ☆67Updated 7 years ago
• x64dbg / InterObfu
  Intermediate x86 instruction representation for use in obfuscation/deobfuscation.
  ☆53Updated 7 years ago
• zodiacon / ObjDir
  Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.
  ☆19Updated last year
• repnz / simple-os
  Simple Protected Mode Kernel for i386
  ☆15Updated 4 years ago
• AndreyBazhan / DbgPkg
  Scripts to prepare Windows system for debugging.
  ☆29Updated 3 years ago
• pccq2002 / windbg
  windbg open source
  ☆39Updated 10 years ago
• ajkhoury / pdbfetch
  Fetch PDB symbols directly from Microsoft's symbol servers
  ☆41Updated 2 years ago
• AaLl86 / retroware
  This repository contains some tools that I have written in the past
  ☆25Updated 10 months ago
• avast / llvm
  An LLVM clone modified for use in RetDec and associated tools.
  ☆19Updated 4 months ago