I was challenged by a friend to list all the processes and drivers in a system using more "unusual" methods. By doing this I learned quite a lot about the windows internals. To be specific I learned a lot about the undocumented structures and functions in the NTAPI.
☆14Jul 12, 2016Updated 9 years ago
Alternatives and similar repositories for UndocumentedNTAPI
Users that are interested in UndocumentedNTAPI are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.☆31May 18, 2022Updated 4 years ago
- Exploit PoC for CVE's and non CVE's alike☆22Jul 24, 2020Updated 5 years ago
- DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10☆53Mar 12, 2024Updated 2 years ago
- A C# implementation that disables Windows Firewall bypassing UAC☆18Oct 23, 2024Updated last year
- ntdll.h - compatible with MSVC 6.0, Intel C++ Compiler and MinGW. Serves as a complete replacement for Windows.h☆152May 24, 2026Updated last month
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Two PoC of accessing process virtual memory via NT Kernel☆22Jun 25, 2021Updated 5 years ago
- Component Services Volatile Environment LPE☆12Jun 28, 2025Updated last year
- XOrCryptEx lightweight C Utility/Algorithm☆13Mar 3, 2022Updated 4 years ago
- BottlEye is a usermode emulator for the popular anti-cheat BattlEye☆64Jul 7, 2020Updated 5 years ago
- search for a driver/dll module that has a wanted section bigger than the size of your image☆22Aug 14, 2021Updated 4 years ago
- C & Shellcode Playground..☆10Dec 2, 2017Updated 8 years ago
- A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering☆43Jun 10, 2025Updated last year
- ☆34Apr 11, 2023Updated 3 years ago
- An simplest PE parser, which list all import and export entries☆12Oct 11, 2018Updated 7 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Incident Response Collections☆11Jul 24, 2018Updated 7 years ago
- Simple tool to perform AStyle formatting in a git repository.☆15Apr 16, 2026Updated 2 months ago
- FAUCET is an OpenFlow controller for multi table OpenFlow 1.3 switches, that implements layer 2 switching, VLANs, ACLs, and layer 3 IPv4 …☆14Nov 18, 2019Updated 6 years ago
- Zerokit shared code☆18Mar 28, 2019Updated 7 years ago
- DUQU MALWARE SOURCE + BINARY + More coming☆14Feb 6, 2023Updated 3 years ago
- Test/benchmark of using 32-bit pointers in 64-bit code on Windows. Not an actual ABI, only inspired by Linux's x32 ABI.☆13Jun 7, 2019Updated 7 years ago
- Chrome Extensions Dataset☆11Updated this week
- Results of a recent FOIA for NIST documents related to the design of Dual EC DRBG. Via EFF and Rep. Grayson's office. See README for deta…☆24Feb 10, 2015Updated 11 years ago
- Binary Deobfuscation Series☆21Nov 20, 2019Updated 6 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ntoskrnl .data hooks for UM-KM communication☆52May 26, 2024Updated 2 years ago
- ☆10Apr 19, 2026Updated 2 months ago
- Display Languages Volatile Environment LPE☆12Jun 28, 2025Updated last year
- ☆133Oct 2, 2024Updated last year
- an iSCSI demo driver for Windows☆12Sep 21, 2015Updated 10 years ago
- ☆27Oct 18, 2023Updated 2 years ago
- Source code on the 1.44MB 3.5 floppy accompanying the Windows NT File System Internals book.☆20Jul 31, 2019Updated 6 years ago
- Windows Research Kernel☆40May 16, 2026Updated last month
- Extended library for using direct system calls on windows☆17Feb 6, 2022Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Demonstrate the new FileDispositionInfoEx behavior☆15Nov 6, 2017Updated 8 years ago
- MSDN data annotation for radare2☆13Jul 2, 2024Updated last year
- RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the …☆10Jul 1, 2015Updated 10 years ago
- Malware WinXPSP2.Cermalus Windows Kernel Virus☆14Aug 11, 2023Updated 2 years ago
- ☆14Apr 16, 2022Updated 4 years ago
- Outlast Trials C++ cheat, feel free to contribute <3☆13Jun 30, 2024Updated last year
- A simple and heavily documented series of test hypervisors built for 64-bit Windows 10 systems running under Intel's VT-x☆35Dec 27, 2020Updated 5 years ago