Simple command line tool to enumerate loaded WFP callout drivers
☆10Feb 2, 2024Updated 2 years ago
Alternatives and similar repositories for WFPCalloutExplorer
Users that are interested in WFPCalloutExplorer are comparing it to the libraries listed below
Sorting:
- WinDbg-Samples ExdiGdbSrv fork 修复了一部分Vmware调试的问题☆32Jul 10, 2023Updated 2 years ago
- A Win32 logger based on DebugView & ETW.☆16Nov 15, 2017Updated 8 years ago
- ☆16Oct 7, 2020Updated 5 years ago
- ☆33Dec 22, 2020Updated 5 years ago
- Detect the SCI in windows.☆11Mar 23, 2017Updated 8 years ago
- Detour library (x64 and x86 compatible)☆13Dec 15, 2020Updated 5 years ago
- research revolving the windows filtering platform callout mechanism☆39May 26, 2024Updated last year
- WFP驱动,关联链路层和进程信息☆16Oct 17, 2021Updated 4 years ago
- An example code of CiGetCertPublisherName☆17Mar 24, 2022Updated 3 years ago
- Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.☆22Sep 4, 2023Updated 2 years ago
- 安全卫士r3工具集☆37Dec 4, 2019Updated 6 years ago
- qq-hook-msg☆18Jun 14, 2023Updated 2 years ago
- Windows system repair tool☆18Jun 2, 2021Updated 4 years ago
- Static Library For Windows Drivers☆41Dec 13, 2025Updated 2 months ago
- Windows NT port of 'Main is usually a function. So then when is it not?'☆27Mar 11, 2024Updated last year
- Source files for my posts☆17Jun 20, 2023Updated 2 years ago
- A utility designed to investigate the behavior of the Windows api 'SetWindowsHookEx', and the behavior of the system when installing / ca…☆26Sep 28, 2023Updated 2 years ago
- C++ wrapper for the Windows structured storage implementation known as Compound Files☆20Aug 30, 2020Updated 5 years ago
- 粗暴地枚举管理内核的WFP对象。 Manage kernel WFPs in a brutal way.☆27Jan 14, 2018Updated 8 years ago
- A simple open source module injector library x86/x64 for Windows☆22Jan 16, 2020Updated 6 years ago
- A VMBR (Virtual-Machine Based Rootkit) which runs a guest OS and sends the attacker its data☆28Apr 27, 2024Updated last year
- IPC.Bond is an extension of IPC library that provides inter-process communication using shared memory on Windows with Bond serialization.☆30Aug 31, 2022Updated 3 years ago
- A POC for Windows Extension Host hooking☆24Jul 13, 2019Updated 6 years ago
- eBPF-For-Windows extension to provide access to Windows kernel functionality☆39Feb 21, 2026Updated last week
- ☆11Dec 21, 2020Updated 5 years ago
- A simple program to scan for open handles in a process.☆61Dec 29, 2016Updated 9 years ago
- Proxy network traffic from specific Windows processes with WireGuard☆31Jul 24, 2023Updated 2 years ago
- A driver that hooks C: volume using symbolic link callback to track all FS access to the volume☆109Apr 24, 2020Updated 5 years ago
- ☆26Sep 17, 2017Updated 8 years ago
- This is a demo project to illustrate the way to verify and restore original SST in case of some malware hooks☆33Mar 2, 2017Updated 9 years ago
- Windows Kernel Debugger over Network (Wireshark dissector and maybe more)☆29Jan 28, 2019Updated 7 years ago
- A host process for R that provides access and extensibility to it remotely over WebSocket and JSON.☆32Sep 8, 2022Updated 3 years ago
- Remote memory library in C++17.☆34May 31, 2018Updated 7 years ago
- Hexadecimal editor.☆29Jun 19, 2015Updated 10 years ago
- The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers☆34Mar 13, 2017Updated 8 years ago
- Detect or invoke ACPI method in windows system.☆29Jul 22, 2016Updated 9 years ago
- VM firmware pkg for Project Mu☆46Feb 6, 2026Updated 3 weeks ago
- Hide Port In Windows☆42Oct 24, 2024Updated last year
- A Windows packet filtering library that enables low-level network packet interception, inspection, and modification. Ideal for building c…☆470Oct 23, 2025Updated 4 months ago