zodiacon / AllTools

Related projects ⓘ

Alternatives and complementary repositories for AllTools

• zodiacon / SystemExplorer
  Windows System Explorer
  ☆838Updated 5 months ago
• hfiref0x / WinObjEx64
  Windows Object Explorer 64-bit
  ☆1,648Updated last month
• zodiacon / ProcMonXv2
  Process Monitor X v2
  ☆589Updated 9 months ago
• hasherezade / tiny_tracer
  A Pin Tool for tracing API calls etc
  ☆1,301Updated 3 weeks ago
• zodiacon / windowskernelprogrammingbook
  The Windows Kernel Programming book samples
  ☆611Updated last year
• winsiderss / phnt
  Native API header files for the System Informer project.
  ☆1,049Updated 2 months ago
• odzhan / injection
  Windows process injection methods
  ☆142Updated last year
• silverf0x / RpcView
  RpcView is a free tool to explore and decompile Microsoft RPC interfaces
  ☆928Updated last year
• zodiacon / WindowsInternals
  Windows Internals Book 7th edition Tools
  ☆2,393Updated 7 months ago
• hasherezade / pe-bear-releases
  PE-bear (builds only)
  ☆769Updated last year
• hasherezade / libpeconv
  A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl
  ☆1,117Updated 2 weeks ago
• wbenny / injdrv
  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
  ☆1,137Updated 6 months ago
• ExpLife0011 / awesome-windows-kernel-security-development
  windows kernel security development
  ☆1,956Updated 2 years ago
• JKornev / hidden
  🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc
  ☆1,827Updated 2 years ago
• Mattiwatti / PPLKiller
  Protected Processes Light Killer
  ☆889Updated last year
• j00ru / windows-syscalls
  Windows System Call Tables (NT/2000/XP/2003/Vista/7/8/10/11)
  ☆2,177Updated 3 weeks ago
• everdox / InfinityHook
  Hook system calls, context switches, page faults and more.
  ☆2,423Updated last year
• mrexodia / TitanHide
  Hiding kernel-driver for x86/x64.
  ☆2,122Updated 10 months ago
• hfiref0x / SyscallTables
  Windows NT Syscall tables
  ☆1,156Updated 2 weeks ago
• 4d61726b / VirtualKD-Redux
  VirtualKD-Redux - A revival and modernization of VirtualKD
  ☆820Updated 4 months ago
• zodiacon / EtwExplorer
  View ETW Provider manifest
  ☆432Updated 2 weeks ago
• googleprojectzero / sandbox-attacksurface-analysis-tools
  Set of tools to analyze Windows sandboxes for exposed attack surface.
  ☆2,074Updated 3 weeks ago
• zodiacon / Win10SysProgBookSamples
  Windows 10 System Programming book samples
  ☆408Updated 5 months ago
• HoShiMin / Kernel-Bridge
  Windows kernel hacking framework, driver template, hypervisor and API written on C++
  ☆1,677Updated last year
• microsoft / WinDbg-Samples
  Sample extensions, scripts, and API uses for WinDbg.
  ☆722Updated 3 months ago
• hasherezade / pe-sieve
  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…
  ☆3,104Updated 2 weeks ago
• zodiacon / PEExplorerV2
  Portable Executable Explorer version 2
  ☆409Updated 7 months ago
• petoolse / petools
  PE Tools - Portable executable (PE) manipulation toolkit
  ☆1,042Updated 6 years ago
• horsicq / XPEViewer
  PE file viewer/editor for Windows, Linux and MacOS.
  ☆992Updated this week
• zodiacon / windowskernelprogrammingbook2e
  Samples for the book Windows Kernel Programming, 2nd edition
  ☆293Updated 3 months ago