Alternatives and similar repositories for woftool:

Users that are interested in woftool are comparing it to the libraries listed below

• arizvisa / ndk
  A local copy of Alex Ionescu's seemingly abandoned native-nt-toolkit project containing knowledge inherited from the ReactOS project.
  ☆54Updated 5 years ago
• Biswa96 / WslReverse
  Experiments with hidden COM interface and LxBus IPC mechanism in WSL
  ☆82Updated 2 years ago
• thinkcz / pico-toolbox
  PICO processes toolbox, playground for PICO processes research
  ☆72Updated 7 years ago
• wbenny / EtwConsumerNT
  Simple project that demonstrates how an ETW consumer can be created just by using NTDLL
  ☆139Updated 6 years ago
• zodiacon / RunAppContainer
  Run executables in an AppContainer
  ☆119Updated 6 years ago
• m417z / global-inject-demo
  A global injection and hooking example
  ☆135Updated last year
• yardenshafir / IoRing_Demos
  A repository for I/O ring demos, use cases and performance testing on Windows
  ☆42Updated 2 years ago
• andrew-boyarshin / LoaderWatch
  Windows 10 PE image loader (LDR) NTDLL component toolbox
  ☆49Updated 5 years ago
• AndreyBazhan / SymStore
  The history of Windows Internals via symbols.
  ☆177Updated 3 years ago
• 0vercl0k / sic
  Enumerate user mode shared memory mappings on Windows.
  ☆117Updated 4 years ago
• Microwave89 / createuserprocess
  Three Tiny Examples of Directly Using Vista's NtCreateUserProcess
  ☆85Updated 9 years ago
• ionescu007 / r0ak
  ☆28Updated 6 years ago
• WalkingCat / SymDiff
  Diff tool for comparing symbols in PDB files
  ☆84Updated 5 years ago
• ionescu007 / wnfun
  WNF Utilities 4 Newbies (WNFUN)
  ☆94Updated 6 years ago
• zodiacon / sysrun
  Run any executable as SYSTEM account (no service required)
  ☆126Updated 9 months ago
• zodiacon / TotalPE
  Yet another PE Viewer
  ☆138Updated 2 years ago
• lowleveldesign / comon
  A WinDbg extension to trace COM interactions
  ☆110Updated last year
• zodiacon / PoolMonX
  A GUI version of the classic PoolMon tool
  ☆112Updated 6 years ago
• Fyyre / ntdll
  ntdll.h - compatible with MSVC 6.0, Intel C++ Compiler and MinGW. Serves as a complete replacement for Windows.h
  ☆134Updated 5 years ago
• dishather / richprint
  Print compiler information stored in Rich Header of PE executables.
  ☆128Updated 2 weeks ago
• Wenzel / osw-fs-windows
  A git history of Windows filesystems
  ☆76Updated 4 years ago
• vovkos / protolesshooks
  API monitoring via return-hijacking thunks; works without information about target function prototypes.
  ☆114Updated 4 years ago
• zodiacon / JobExplorer
  Explore Job Objects on a Windows system
  ☆82Updated 5 years ago
• ntdiff / ntdiff
  ☆125Updated 5 months ago
• ykfre / BsodSurvivor
  This project aims to facilitate debugging a kernel driver in windows by adding support for a code change on the fly without reboot/unload…
  ☆172Updated last year
• tandasat / WPBT-Builder
  The simple UEFI application to create a Windows Platform Binary Table (WPBT) from the UEFI shell.
  ☆103Updated 3 years ago
• AndreyBazhan / DbgPkg
  Scripts to prepare Windows system for debugging.
  ☆30Updated 4 years ago
• trailofbits / uthenticode
  A cross-platform library for verifying Authenticode signatures
  ☆144Updated last week
• ajkhoury / ApiSet
  API Set resolver for Windows
  ☆129Updated 5 months ago
• coderforlife / ms-compress
  Open source implementations of Microsoft compression algorithms
  ☆208Updated 4 years ago