weixu8 / RegMon
Registry tracker
☆17Updated 12 years ago
Alternatives and similar repositories for RegMon:
Users that are interested in RegMon are comparing it to the libraries listed below
- Advance LPC☆62Updated 7 years ago
- View handles and object for each object type☆63Updated 5 years ago
- A local copy of Alex Ionescu's seemingly abandoned native-nt-toolkit project containing knowledge inherited from the ReactOS project.☆54Updated 5 years ago
- Open Source Libraries Collection☆24Updated 9 years ago
- Blog posts☆30Updated 4 years ago
- Debugger extension for the Debugging Tools for Windows (WinDbg, KD, CDB, NTSD).☆68Updated 8 years ago
- A software driver that lets you log kernel-mode debug output into a file on Windows.☆104Updated 6 years ago
- ☆28Updated 9 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆54Updated 5 years ago
- NDC Oslo 2019 slides and demos☆32Updated 4 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆58Updated 8 years ago
- Analyze and attack windows applications using dll hijacking vulnerabilities☆56Updated 5 years ago
- Lists all visible objects in the Windows kernel object namespace, a command-line WinObj☆12Updated 6 years ago
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆140Updated 6 years ago
- DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10☆52Updated last year
- An alternative tool to Sysinternals WinObj tool (nicer icons!)☆36Updated 6 years ago
- C++ library for low-level Windows development☆74Updated last year
- Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.��☆20Updated last year
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆67Updated 5 years ago
- File system minifilter driver for Windows to block symbolic link attacks.☆51Updated 4 years ago
- WinDbg debugger extension library providing various tools to analyse, dump and fix (restore) Microsoft Portable Executable files for both…☆82Updated 8 months ago
- Various WinDbg extensions and scripts☆31Updated 6 years ago
- Simple proof of concept code for injecting libraries on 64bit processes from a 32bit process☆94Updated 6 years ago
- just an lite AntiRootkit for interesting☆23Updated 9 years ago
- Decrement Windows Kernel for fun and profit☆38Updated 7 years ago
- Anti-Anti-VM solution via Windows Driver☆57Updated 6 years ago
- VrtuleTree is a tool that displays information about driver and device objects present in the system and relations between them. Its func…☆58Updated 4 years ago
- This is a sample that shows how to leverage SetThreadContext for DLL injection☆82Updated 7 years ago
- Example of real-time Windows ETW packet capture session☆53Updated 7 years ago
- OpenSrc projects; common multiprojects headers store to ./Common/*category*/☆48Updated 11 years ago