weixu8 / RegMon
Registry tracker
☆17Updated 11 years ago
Alternatives and similar repositories for RegMon:
Users that are interested in RegMon are comparing it to the libraries listed below
- Open Source Libraries Collection☆24Updated 9 years ago
- Advance LPC☆62Updated 7 years ago
- Various WinDbg extensions and scripts☆31Updated 6 years ago
- Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.☆19Updated last year
- View handles and object for each object type☆61Updated 5 years ago
- This repository contains some tools that I have written in the past☆28Updated last year
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆66Updated 4 years ago
- Helper utility for debugging windows PE/PE+ loader.☆51Updated 9 years ago
- OpenSrc projects; common multiprojects headers store to ./Common/*category*/☆48Updated 10 years ago
- An alternative tool to Sysinternals WinObj tool (nicer icons!)☆34Updated 6 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆53Updated 5 years ago
- NDC Oslo 2019 slides and demos☆32Updated 4 years ago
- WinDbg debugger extension library providing various tools to analyse, dump and fix (restore) Microsoft Portable Executable files for both…☆82Updated 5 months ago
- Lists all visible objects in the Windows kernel object namespace, a command-line WinObj☆11Updated 6 years ago
- Debugger extension for the Debugging Tools for Windows (WinDbg, KD, CDB, NTSD).☆68Updated 8 years ago
- A local copy of Alex Ionescu's seemingly abandoned native-nt-toolkit project containing knowledge inherited from the ReactOS project.☆54Updated 5 years ago
- Simple proof of concept code for injecting libraries on 64bit processes from a 32bit process☆95Updated 6 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆58Updated 8 years ago
- This is a simple driver with x64 inline assembly☆54Updated 4 years ago
- DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10☆52Updated 11 months ago
- Windows_OS_Internals_Curriculum_Resource_Kit-ACADEMIC☆23Updated 6 years ago
- Blog posts☆30Updated 4 years ago
- Decrement Windows Kernel for fun and profit☆37Updated 7 years ago
- a network filter using NDIS hook technique☆19Updated 11 years ago
- Shareds for kernel developement☆27Updated 11 years ago
- User-mode program parsing logs created by HyperPlatform☆18Updated 8 years ago
- VrtuleTree is a tool that displays information about driver and device objects present in the system and relations between them. Its func…☆58Updated 3 years ago
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆55Updated 4 years ago
- DTrace for Windows in userspace; Frontend to ETW☆27Updated 2 years ago
- C++ library for low-level Windows development☆72Updated 10 months ago