Alternatives and similar repositories for WMIExplorer

Users that are interested in WMIExplorer are comparing it to the libraries listed below

• zodiacon / KObjects
  Sample for Creating a new kernel object type and supporting API
  ☆26Updated last year
• zodiacon / VerifierDLL
  Example of building an application verifer DLL
  ☆49Updated last year
• zodiacon / TotalSystem
  View Windows System in action
  ☆41Updated 2 months ago
• ByteWhite1x1 / PatchGuardResearch
  Bypassing kernel patch protection runtime
  ☆21Updated 2 years ago
• zodiacon / DbgPrint
  Debug Print viewer (user and kernel)
  ☆68Updated last year
• zodiacon / WinEventHooks
  SetWinEventHook Sample
  ☆49Updated 2 years ago
• DebugPrivilege / WindowsAP1
  Code samples that serve as references for Windows API functions
  ☆35Updated last year
• 3dnow / NtCreateLowBoxToken
  A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering
  ☆41Updated 3 months ago
• m417z / LdrDllNotificationHook
  Hook all callbacks which are registered with LdrRegisterDllNotification
  ☆90Updated 6 months ago
• connormcgarr / SkBridge
  Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1
  ☆48Updated 3 weeks ago
• m417z / x64dbg-symbol-tldr
  An x64dbg plugin which helps make sense of long C++ symbols
  ☆59Updated 2 years ago
• zodiacon / RemoteThreadDetection
  Remote Thread Detection with a Kernel Driver
  ☆32Updated 8 months ago
• zodiacon / InfStudio
  INF Studio for easier working with driver installation files
  ☆39Updated last year
• benheise / ANGRYORCHARD
  A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.
  ☆31Updated 3 years ago
• DosX-dev / PEBLoader.h
  Tiny C header that allows easy hiding of WinAPI imports via PEB
  ☆32Updated last month
• hugsy / modern-cpp-windows-driver-template
  Windows driver template, using C++20 & cmake & GithubActions
  ☆22Updated last year
• worawit / malk
  Demonstrate calling a kernel function and handle process creation callback against HVCI
  ☆73Updated 2 years ago
• 0mWindyBug / MinifilterHook
  silence file system monitoring components by hooking their minifilters
  ☆59Updated last year
• hfiref0x / AsIo3Unlock
  ASUSTeK AsIO3 I/O driver unlock
  ☆23Updated 4 years ago
• zodiacon / MalDevWorkshopWebinar
  Demo from the Malware Analysis and Development Webinar
  ☆23Updated last year
• zodiacon / BITSManager
  BITS Transfers Manager
  ☆43Updated 4 months ago
• backengineering / msrexec
  Elevate arbitrary MSR writes to kernel execution.
  ☆38Updated 2 years ago
• ManulMap / malstring
  Using c++23 compile-time magic to produce obfuscated PIC strings and arrays.
  ☆30Updated last year
• m417z / x64dbg-xfg-marker
  An x64dbg plugin which marks XFG call signatures as data
  ☆77Updated 2 years ago
• ch3rn0byl / Gremlins
  ☆14Updated 2 years ago
• hasherezade / sig_finder
  Signature finder (from PE-bear)
  ☆39Updated last month
• SamuelTulach / SecureGame
  Proof-of-concept game using VBS enclaves to protect itself from cheating
  ☆43Updated 10 months ago
• 0mWindyBug / WFPCalloutReserach
  research revolving the windows filtering platform callout mechanism
  ☆33Updated last year
• sgabe / SymlinkProtect
  File system minifilter driver for Windows to block symbolic link attacks.
  ☆52Updated 4 years ago
• keowu / InstrumentationCallbackToolKit
  A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using Instrumentation…
  ☆32Updated 2 years ago