zodiacon / TotalPE2
PE Viewer
☆143Updated 2 months ago
Related projects: ⓘ
- Yet another PE Viewer☆137Updated last year
- Explore Kernel Objects on Windows☆192Updated 7 months ago
- Advanced driver monitoring utility.☆194Updated 2 years ago
- Global user-mode hooking framework, based on AppInit_DLLs. The goal is to allow you to rapidly develop hooks to inject in an arbitrary pr…☆156Updated 2 years ago
- ntdll.h - compatible with MSVC 6.0, Intel C++ Compiler and MinGW. Serves as a complete replacement for Windows.h☆128Updated 5 years ago
- Bootkit for Windows Sandbox to disable DSE/PatchGuard.☆251Updated 2 years ago
- A multiline (and ultimate) assembler (and disassembler) plugin for x64dbg and OllyDbg. A perfect tool for modifying and extending a compi…☆109Updated 2 years ago
- Single header version of System Informer's phnt library.☆172Updated 3 months ago
- A global injection and hooking example☆119Updated 10 months ago
- Authenticode Hash Calculator for PE32/PE32+ files☆104Updated 6 months ago
- A bunch of parsers for PE and PDB formats in C++☆220Updated 4 months ago
- A small tool that allows to run WinAPI functions through command line parameters☆176Updated last year
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆229Updated 2 years ago
- An example of a client and server using Windows' ALPC functions to send and receive data.☆88Updated 4 years ago
- Comparing, discussing, and bypassing various techniques for suspending and freezing processes on Windows.☆109Updated 2 years ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆214Updated 2 years ago
- Kernel Pool Monitor☆118Updated 2 years ago
- Use ci.dll API for validating Authenticode signature of files☆124Updated 2 years ago
- Some Code Samples for Windows based Inter-Process-Communication (IPC)☆153Updated 6 months ago
- API Set resolver for Windows☆114Updated last week
- Elevate a process to be a protected process☆140Updated 5 years ago
- Native API online documentation, based on the System Informer (formerly Process Hacker) phnt headers☆142Updated this week
- Three Tiny Examples of Directly Using Vista's NtCreateUserProcess☆84Updated 8 years ago
- APC Internals Research Code☆155Updated 4 years ago
- Resolve DOS MZ executable symbols at runtime☆93Updated 2 years ago
- A collection of free miscellaneous Windows tools☆118Updated 3 weeks ago
- Browse Page Tables on Windows (Page Table Viewer)☆178Updated 2 years ago
- Debug Print viewer (user and kernel)☆63Updated 7 months ago
- ☆186Updated this week
- DSE bypass using a leaked cert and adjusting the current clock.☆133Updated 2 years ago