Alternatives and similar repositories for noahx:

Users that are interested in noahx are comparing it to the libraries listed below

• yardenshafir / DpcWait
  Driver demonstrating how to register a DPC to asynchronously wait on an object
  ☆49Updated 4 years ago
• OSRDrivers / penter
  penter hook example and driver time recorder
  ☆31Updated 7 years ago
• ajkhoury / Windbg2Struct
  Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure
  ☆35Updated 6 months ago
• MeeSong / Sunstrider
  Analyze PatchGuard
  ☆54Updated 6 years ago
• zodiacon / ndcoslo2019
  NDC Oslo 2019 slides and demos
  ☆32Updated 4 years ago
• MeeSong / Windows_OS_Internals_Curriculum_Resource_Kit-ACADEMIC
  Windows_OS_Internals_Curriculum_Resource_Kit-ACADEMIC
  ☆23Updated 6 years ago
• vtil-project / VTIL-Common
  A common set of helpers used across VTIL toolchain. Moved into -->
  ☆20Updated 4 years ago
• kukrimate / grr
  AMD SVM hypervisor rootkit proof of concept
  ☆44Updated last year
• zodiacon / ObjDir
  Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.
  ☆19Updated last year
• JaanusKaapPublic / BlogHyperV
  Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/
  ☆55Updated 4 years ago
• lldre / handle_exploration
  Figuring out the cause of a handle downgrade
  ☆24Updated 2 years ago
• arizvisa / ndk
  A local copy of Alex Ionescu's seemingly abandoned native-nt-toolkit project containing knowledge inherited from the ReactOS project.
  ☆54Updated 5 years ago
• repnz / windows-inspector
  A driver to intercept low level windows events
  ☆62Updated 5 years ago
• avast / llvm
  An LLVM clone modified for use in RetDec and associated tools.
  ☆19Updated 9 months ago
• ievukas / ntos-boot
  The bootloader for the latest versions of Windows NT, Windows 8 to Windows 11.
  ☆20Updated 4 years ago
• Fyyre / directntapi
  DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10
  ☆52Updated 10 months ago
• omerk2511 / NotifyRoutinesResearch
  A research project about Windows notify routines.
  ☆35Updated 4 years ago
• OSRDrivers / windbg-exts
  Various WinDbg extensions and scripts
  ☆31Updated 6 years ago
• Mattiwatti / BSOD10
  Crash Windows 10 up to RS2 from an unprivileged process
  ☆41Updated 7 years ago
• JKornev / NTlib
  Static library and headers for linking your software with ntdll.dll
  ☆32Updated 5 years ago
• repnz / simple-os
  Simple Protected Mode Kernel for i386
  ☆16Updated 5 years ago
• cxxrev0to1dev / nb_obfuscator
  win32/x64 obfuscate framework
  ☆32Updated 5 years ago
• GiveMeZeny / fde64
  Extended Length Disassembler Engine for x86-64 (1337 bytes in size)
  ☆48Updated 5 years ago
• Mattiwatti / WinMain-is-usually-a-function
  Windows NT port of 'Main is usually a function. So then when is it not?'
  ☆25Updated 10 months ago
• StrikerX3 / whvpclient
  Windows Hypervisor Platform client
  ☆29Updated 6 years ago
• nlog2n / x86obfuscator
  a binary x86win32 code obfuscator using virtual machine
  ☆32Updated 8 years ago
• andrew-boyarshin / LoaderWatch
  Windows 10 PE image loader (LDR) NTDLL component toolbox
  ☆49Updated 5 years ago
• OSRDrivers / Inverted
  Example WDF/KMDF driver and test app demonstrating the "inverted call model"
  ☆33Updated 4 years ago
• ajkhoury / pdbfetch
  Fetch PDB symbols directly from Microsoft's symbol servers
  ☆42Updated 3 years ago
• SinaKarvandi / VMCS-Auditor
  VMCS Auditor provides almost all of Intel's VMCS Layout checklist based on Bochs Emulator.
  ☆32Updated 6 years ago