zodiacon / AllTools
All reasonably stable tools
☆1,130Updated last month
Related projects: ⓘ
- Windows Object Explorer 64-bit☆1,619Updated 2 months ago
- Windows System Explorer☆828Updated 3 months ago
- Native API header files for the System Informer project.☆1,009Updated last week
- windows kernel security development☆1,941Updated 2 years ago
- A Pin Tool for tracing API calls etc☆1,268Updated 3 weeks ago
- Process Monitor X v2☆578Updated 7 months ago
- PE-bear (builds only)☆765Updated last year
- Windows process injection methods☆122Updated last year
- Windows System Call Tables (NT/2000/XP/2003/Vista/7/8/10/11)☆2,116Updated last month
- RpcView is a free tool to explore and decompile Microsoft RPC interfaces☆905Updated 11 months ago
- The Windows Kernel Programming book samples☆589Updated 11 months ago
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,034Updated last week
- PE file viewer/editor for Windows, Linux and MacOS.☆967Updated this week
- 🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc☆1,764Updated 2 years ago
- A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl☆1,082Updated last week
- Windows NT Syscall tables☆1,122Updated last month
- A free but powerful Windows kernel research tool.☆2,380Updated 3 months ago
- An index of Windows binaries, including download links for executables such as exe, dll and sys files☆572Updated this week
- PE Tools - Portable executable (PE) manipulation toolkit☆1,018Updated 6 years ago
- Sample extensions, scripts, and API uses for WinDbg.☆708Updated last month
- Hiding kernel-driver for x86/x64.☆2,081Updated 8 months ago
- View ETW Provider manifest☆413Updated 7 months ago
- VirtualKD-Redux - A revival and modernization of VirtualKD☆807Updated 2 months ago
- Protected Processes Light Killer☆875Updated last year
- proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC☆1,096Updated 4 months ago
- Set of tools to analyze Windows sandboxes for exposed attack surface.☆2,048Updated 3 weeks ago
- Windows 10 System Programming book samples☆407Updated 3 months ago
- A curated list of IDA x64DBG, Ghidra and OllyDBG plugins.☆1,242Updated 3 months ago
- Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide☆3,400Updated 3 months ago
- Windows kernel hacking framework, driver template, hypervisor and API written on C++☆1,653Updated 10 months ago