Alternatives and similar repositories for woftool:

Users that are interested in woftool are comparing it to the libraries listed below

• thinkcz / pico-toolbox
  PICO processes toolbox, playground for PICO processes research
  ☆72Updated 7 years ago
• yardenshafir / IoRing_Demos
  A repository for I/O ring demos, use cases and performance testing on Windows
  ☆43Updated 2 years ago
• AndreyBazhan / SymStore
  The history of Windows Internals via symbols.
  ☆176Updated 3 years ago
• zodiacon / RunAppContainer
  Run executables in an AppContainer
  ☆120Updated 6 years ago
• yardenshafir / DpcWait
  Driver demonstrating how to register a DPC to asynchronously wait on an object
  ☆49Updated 4 years ago
• 0vercl0k / sic
  Enumerate user mode shared memory mappings on Windows.
  ☆118Updated 4 years ago
• DownWithUp / CallMon
  CallMon is an experimental system call monitoring tool that works on Windows 10 versions 2004+ using PsAltSystemCallHandlers
  ☆130Updated 4 years ago
• ionescu007 / r0ak
  ☆30Updated 6 years ago
• arizvisa / ndk
  A local copy of Alex Ionescu's seemingly abandoned native-nt-toolkit project containing knowledge inherited from the ReactOS project.
  ☆54Updated 5 years ago
• zodiacon / ProcExpX
  ☆65Updated 3 years ago
• zodiacon / TotalPE
  Yet another PE Viewer
  ☆139Updated 2 years ago
• microsoft / ndis-driver-library
  Code to make it easier to write an NDIS network driver on Windows
  ☆85Updated last year
• yardenshafir / PoolViewer
  An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.
  ☆137Updated 2 years ago
• TimMisiak / windup
  WinDbg installer/updater
  ☆39Updated last year
• lowleveldesign / comon
  A WinDbg extension to trace COM interactions
  ☆114Updated last year
• zodiacon / InfStudio
  INF Studio for easier working with driver installation files
  ☆36Updated last year
• vovkos / protolesshooks
  API monitoring via return-hijacking thunks; works without information about target function prototypes.
  ☆115Updated 4 years ago
• ntdiff / ntdiff
  ☆126Updated 6 months ago
• wbenny / EtwConsumerNT
  Simple project that demonstrates how an ETW consumer can be created just by using NTDLL
  ☆139Updated 6 years ago
• gamozolabs / pdblister
  Faster version of `symchk /om` for generating PDB manifests of offline machines
  ☆19Updated 3 years ago
• ionescu007 / tpmtool
  The TpmTool utility is a simple cross-platform tool for accessing TPM2.0 Non-Volatile (NV) Spaces (Index Values) on compliant systems, wi…
  ☆145Updated 3 years ago
• Microwave89 / createuserprocess
  Three Tiny Examples of Directly Using Vista's NtCreateUserProcess
  ☆87Updated 9 years ago
• utshina / noahx
  Noah for Windows
  ☆25Updated 4 years ago
• Biswa96 / WslReverse
  Experiments with hidden COM interface and LxBus IPC mechanism in WSL
  ☆83Updated 2 years ago
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆81Updated 4 years ago
• ykfre / BsodSurvivor
  This project aims to facilitate debugging a kernel driver in windows by adding support for a code change on the fly without reboot/unload…
  ☆172Updated last year
• MalwareTech / AppContainerSandbox
  An example sandbox using AppContainer (Windows 8+)
  ☆136Updated 5 years ago
• WalkingCat / SymDiff
  Diff tool for comparing symbols in PDB files
  ☆82Updated 5 years ago
• assarbad / msvc-undoc
  Undocumented MSVC
  ☆18Updated 8 months ago
• m417z / global-inject-demo
  A global injection and hooking example
  ☆135Updated last year