zodiacon / ALPCLoggerLinks
Log ALPC activity
☆84Updated last year
Alternatives and similar repositories for ALPCLogger
Users that are interested in ALPCLogger are comparing it to the libraries listed below
Sorting:
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆143Updated 6 years ago
- File system minifilter driver for Windows to block symbolic link attacks.☆51Updated 4 years ago
- Process Doppelgänging☆158Updated 7 years ago
- View handles and object for each object type☆64Updated 5 years ago
- Run any executable as SYSTEM account (no service required)☆130Updated last year
- Advance LPC☆69Updated 8 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆67Updated 5 years ago
- An example of a client and server using Windows' ALPC functions to send and receive data.☆96Updated 5 months ago
- windbg plugin for win32k debugging☆75Updated 5 years ago
- Explore Job Objects on a Windows system☆83Updated 5 years ago
- ☆27Updated 7 years ago
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆58Updated 5 years ago
- Command like tool to print mitigation flags for running processes in a memory dump☆46Updated 4 years ago
- A command tree based on commands and extensions for Windows Kernel Debugging.☆108Updated 4 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆106Updated 5 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆58Updated 9 years ago
- An command-line RPC method enumerator, born out of RPCView's awesomeness☆105Updated 5 years ago
- kernel pool windbg extension☆84Updated 9 years ago
- Windows RPC Python fuzzer☆162Updated 7 years ago
- 0CCh Windbg extension: include some useful commands☆111Updated last year
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆219Updated 5 years ago
- Helper idapython code for reversing kmdf drivers☆72Updated 2 years ago
- Windbg2ida lets you dump each step in Windbg then shows these steps in IDA☆75Updated 11 months ago
- Translates WinDbg "dt" structure dump to a C structure☆128Updated 8 years ago
- Some Code Samples for Windows based Inter-Process-Communication (IPC)☆176Updated last year
- Inject unsigned DLL into Protected Process Light (PPL)☆24Updated last month
- ☆80Updated 3 years ago
- A Windows kernel dump C++ parser library with Python 3 bindings.☆201Updated 11 months ago
- Toolkit for Hyper-V security research☆157Updated 3 years ago
- This is a sample that shows how to leverage SetThreadContext for DLL injection☆84Updated 7 years ago