zodiacon / JobExplorer
Explore Job Objects on a Windows system
☆82Updated 5 years ago
Alternatives and similar repositories for JobExplorer:
Users that are interested in JobExplorer are comparing it to the libraries listed below
- View handles and object for each object type☆61Updated 5 years ago
- Run any executable as SYSTEM account (no service required)☆126Updated 10 months ago
- Log ALPC activity☆82Updated last year
- An example of how x64 kernel shellcode can dynamically find and use APIs☆104Updated 4 years ago
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆55Updated 4 years ago
- Command like tool to print mitigation flags for running processes in a memory dump☆46Updated 4 years ago
- API Set Viewer☆88Updated last month
- An command-line RPC method enumerator, born out of RPCView's awesomeness☆102Updated 5 years ago
- Call 32bit NtDLL API directly from WoW64 Layer☆60Updated 4 years ago
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆139Updated 6 years ago
- C++ library for low-level Windows development☆72Updated 11 months ago
- File system minifilter driver for Windows to block symbolic link attacks.☆51Updated 4 years ago
- ☆78Updated 3 years ago
- An example of a client and server using Windows' ALPC functions to send and receive data.☆94Updated last month
- A simple POC to demonstrate the power of .NET debugging for injection☆72Updated 4 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆67Updated 4 years ago
- Windbg extension that allows you analyze Control Flow Guard map☆34Updated 3 years ago
- Dumps information about all the callback objects found in a dump file and the functions registered for them☆35Updated 4 years ago
- A WinDbg extension to trace COM interactions☆111Updated last year
- Driver demonstrating how to register a DPC to asynchronously wait on an object☆49Updated 4 years ago
- Local OXID Resolver (LCLOR) : Research and Tooling☆34Updated 3 years ago
- WinDbg debugger extension library providing various tools to analyse, dump and fix (restore) Microsoft Portable Executable files for both…☆82Updated 6 months ago
- ☆33Updated 3 years ago
- ☆64Updated 3 years ago
- c++ implementation of windows heavens gate☆68Updated 4 years ago
- A simple API monitor for Windbg☆62Updated 7 years ago
- A PoC designed to bypass all usermode hooks in a WoW64 environment.☆149Updated 4 years ago
- Trace events in real time sessions☆44Updated last year
- DTrace for Windows in userspace; Frontend to ETW☆27Updated 2 years ago
- Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.☆48Updated 4 years ago