zodiacon / ObjDirLinks
Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.
☆21Updated 2 years ago
Alternatives and similar repositories for ObjDir
Users that are interested in ObjDir are comparing it to the libraries listed below
Sorting:
- An alternative tool to Sysinternals WinObj tool (nicer icons!)☆35Updated 7 years ago
- Simple error lookup for Win32 and NTSTATUS errors☆20Updated 7 years ago
- ☆36Updated 5 years ago
- View handles and object for each object type☆64Updated 6 years ago
- User-mode program parsing logs created by HyperPlatform☆18Updated 9 years ago
- A tool to investigate the Windows device manager☆13Updated 6 years ago
- Open Source Libraries Collection☆24Updated 10 years ago
- x64 Kernel Hooks Detection☆24Updated 9 years ago
- Full reversing of the Microsoft Auxiliary Windows API Library and ported to C☆24Updated last year
- Crash Windows 10 up to RS2 from an unprivileged process☆42Updated 8 years ago
- A command line tool to load and unload a device driver.☆46Updated 8 years ago
- penter hook example and driver time recorder☆31Updated 8 years ago
- Debugger extension for the Debugging Tools for Windows (WinDbg, KD, CDB, NTSD).☆69Updated 9 years ago
- Hook IDT vector 0xb2 to detect SCI in 64bit windows.☆34Updated 3 years ago
- ☆29Updated 5 years ago
- Notes my learning steps about Windows-NT☆23Updated 8 years ago
- Various WinDbg extensions and scripts☆32Updated 7 years ago
- Shareds for kernel developement☆29Updated 12 years ago
- HadesMem is a C++-based memory hacking library for Windows based applications, with the goal of providing a safe, generic, powerful, and …☆28Updated 11 years ago
- A drop-in replacement for the C++ STL for kernel mode Windows drivers. The goal is to have implementations for things like the standard a…☆32Updated 9 years ago
- An open source library for operating the Windows Overlay Filter driver.☆22Updated 7 years ago
- Formely KMon, a Windows Kernel Driver designed to prevent malware attacks by monitoring the creation of registry keys in common autorun l…☆21Updated 11 years ago
- viewing page boundaries of pages with PAGE_NOACCESS protection reveals the presence of x64dbg.☆26Updated 9 years ago
- a network filter using NDIS hook technique☆19Updated 12 years ago
- A simple ransomware defender.It uses minifilter to filt "rewrite" and "delete" events in kernel.And it handles event in user mode.☆27Updated 7 years ago
- Example of real-time Windows ETW packet capture session☆54Updated 8 years ago
- Demonstrate the new FileDispositionInfoEx behavior☆14Updated 8 years ago
- PE Infector/Cryptor source code☆16Updated 8 years ago
- copy of tdifw lib☆10Updated 8 years ago
- Kernel-mode file scanner☆19Updated 7 years ago