Alternatives and similar repositories for Windows-Internals:

Users that are interested in Windows-Internals are comparing it to the libraries listed below

• namazso / msvcrt.lib
  .lib file for linking against the NT CRT
  ☆20Updated 2 years ago
• therealdreg / pdbdump_bochs
  Dump PDB Symbols including support for Bochs Debugging Format (with wine support)
  ☆15Updated last year
• Peribunt / Wow64-HeavensGate
  Basic utilities for executing, reading and writing 64-bit data in a 32-bit WoW64 process
  ☆16Updated 2 years ago
• JKornev / NTlib
  Static library and headers for linking your software with ntdll.dll
  ☆32Updated 5 years ago
• h4xu3lyn / NTLib
  Headers for linking your software with ntdll.dll
  ☆15Updated 4 years ago
• nimrodpar / Obfvious
  ☆14Updated 3 years ago
• Zero-Tang / SimpleWhpDemo
  Simple Demo of using Windows Hypervisor Platform
  ☆27Updated 9 months ago
• EngineOwningSoftware / HWBRK
  Windows x86 Hardware Breakpoint class for Windows >Vista
  ☆22Updated 8 years ago
• fake-cheater / MouHidInputHook
  MouHidInputHook enables users to filter, modify, and inject mouse input data packets into the input data stream of HID USB mouse devices …
  ☆9Updated 5 years ago
• blaquee / APCHook
  hooking KiUserApcDispatcher
  ☆23Updated 7 years ago
• alexvogt91 / NativeFileCompressor
  Native file compressor using only the ntdll.dll
  ☆9Updated 6 years ago
• stonedreamforest / Tstl
  The kernel mode Standard Template Library Template
  ☆18Updated 4 years ago
• eyalfishler / CrystalCPUID
  use crystalCPUID to identify vt-x & amd-v
  ☆16Updated 9 years ago
• gabriellandau / CISpotter
  Code Integrity Violation Spotter
  ☆17Updated 7 months ago
• mrexodia / regstep
  Simple x64dbg plugin to show registers on every step.
  ☆16Updated 5 years ago
• crtdll / ppc-vm
  PowerPC (64bit) virtual machine with support for ram, stack, syscalls, and threading. WIP
  ☆2Updated 3 years ago
• Vicshann / PEProtectDrv
  Some crazy PE executables protection kernel driver
  ☆18Updated 4 years ago
• vlmillet / Phantom.JIT
  Phantom.Code extension providing Just-In-Time asm x64 compilation based on LLVM
  ☆8Updated 2 years ago
• TheNNX / NNXOS64
  A 64 bit OS
  ☆11Updated 3 weeks ago
• AzureGreen / WinNT-Learning
  Notes my learning steps about Windows-NT
  ☆23Updated 7 years ago
• MiroKaku / ConMon
  Windows Console Monitor
  ☆33Updated 5 years ago
• ObstreperousMadcap / villainius--procedural
  A benign application used to demonstrate an EDR detection. This version is procedural (i.e., not object-oriented).
  Updated 2 years ago
• chip-red-pill / glm_ucode_patch_parser
  ☆15Updated 2 years ago
• meme / VTIL-DemoCompiler
  A demo AsmJit-based VTIL amd64 compiler.
  ☆12Updated 3 years ago
• Fyyre / cmp_hook
  using capstone to assist in increasing the size of C++ objects
  ☆15Updated 5 years ago
• vtil-project / VTIL-Common
  A common set of helpers used across VTIL toolchain. Moved into -->
  ☆20Updated 4 years ago
• nblog / ce-driver-libaray
  use ce driver, kernel library.
  ☆14Updated 2 years ago
• thecatkitty / nt-native
  An example of Windows NT Native API application and kernel driver
  ☆21Updated 4 years ago
• jnastarot / cleancall
  Library for using direct system calls
  ☆35Updated this week
• pr701 / idb3
  Library for reading IDA Pro databases.
  ☆25Updated 3 years ago