Alternatives and similar repositories for JobExplorer

Users that are interested in JobExplorer are comparing it to the libraries listed below

• zodiacon / KernelObjectView
  View handles and object for each object type
  ☆64Updated 6 years ago
• yardenshafir / MitigationFlagsCliTool
  Command like tool to print mitigation flags for running processes in a memory dump
  ☆47Updated 5 years ago
• yardenshafir / CallbackObjectAnalyzer
  Dumps information about all the callback objects found in a dump file and the functions registered for them
  ☆36Updated 5 years ago
• aaaddress1 / wow64Jit
  Call 32bit NtDLL API directly from WoW64 Layer
  ☆61Updated 5 years ago
• Biswa96 / TraceEvent
  Trace events in real time sessions
  ☆45Updated 2 years ago
• sgabe / SymlinkProtect
  File system minifilter driver for Windows to block symbolic link attacks.
  ☆52Updated 4 years ago
• waleedassar / SyscallNumberFinder
  ☆33Updated 4 years ago
• DownWithUp / DynamicKernelShellcode
  An example of how x64 kernel shellcode can dynamically find and use APIs
  ☆104Updated 5 years ago
• zodiacon / ApiSetView
  API Set Viewer
  ☆90Updated 10 months ago
• zodiacon / sysrun
  Run any executable as SYSTEM account (no service required)
  ☆139Updated last year
• JKornev / cfgdump
  Windbg extension that allows you analyze Control Flow Guard map
  ☆36Updated 4 years ago
• csandker / RPCDump
  ☆85Updated 3 years ago
• zodiacon / WinSys
  C++ library for low-level Windows development
  ☆81Updated last year
• JaanusKaapPublic / BlogHyperV
  Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/
  ☆57Updated 5 years ago
• jackullrich / Windows-API-Fuzzer
  Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.
  ☆99Updated 5 years ago
• lowleveldesign / comon
  A WinDbg extension to trace COM interactions
  ☆122Updated 3 months ago
• yardenshafir / DpcWait
  Driver demonstrating how to register a DPC to asynchronously wait on an object
  ☆50Updated 4 years ago
• xpn / RpcEnum
  An command-line RPC method enumerator, born out of RPCView's awesomeness
  ☆108Updated 6 years ago
• yardenshafir / KernelDataStructureFinder
  Driver and WinDBG scripts to dump information about all resources and lookaside lists
  ☆65Updated 5 years ago
• OsandaMalith / ApiMon
  A simple API monitor for Windbg
  ☆64Updated 8 years ago
• AaLl86 / retroware
  This repository contains some tools that I have written in the past
  ☆28Updated 2 years ago
• zodiacon / PoolMonXv2
  Kernel Pool Monitor
  ☆127Updated 3 years ago
• prash-wghats / Dtrace-ETW
  DTrace for Windows in userspace; Frontend to ETW
  ☆27Updated 3 years ago
• hfiref0x / Misc
  Miscellaneous Code and Docs
  ☆84Updated 4 months ago
• zodiacon / Blog
  Blog posts
  ☆29Updated 5 years ago
• xpn / DotNetDebug
  A simple POC to demonstrate the power of .NET debugging for injection
  ☆73Updated 5 years ago
• Microwave89 / createuserprocess
  Three Tiny Examples of Directly Using Vista's NtCreateUserProcess
  ☆89Updated 10 years ago
• wbenny / EtwConsumerNT
  Simple project that demonstrates how an ETW consumer can be created just by using NTDLL
  ☆146Updated 6 years ago
• 0xhido / BlueLight
  Open-source EDR kernel-component for system monitoring and DLL injection
  ☆32Updated 5 years ago
• jay / gethooks
  GetHooks is a program designed for the passive detection and monitoring of hooks from a limited user account.
  ☆61Updated 4 years ago