zodiacon / WMIExplorerLinks
☆24Updated 2 months ago
Alternatives and similar repositories for WMIExplorer
Users that are interested in WMIExplorer are comparing it to the libraries listed below
Sorting:
- Sample for Creating a new kernel object type and supporting API☆26Updated last year
- Example of building an application verifer DLL☆49Updated last year
- View Windows System in action☆41Updated 2 months ago
- Bypassing kernel patch protection runtime☆21Updated 2 years ago
- Debug Print viewer (user and kernel)☆68Updated last year
- SetWinEventHook Sample☆49Updated 2 years ago
- Code samples that serve as references for Windows API functions☆35Updated last year
- A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering☆41Updated 3 months ago
- Hook all callbacks which are registered with LdrRegisterDllNotification☆90Updated 6 months ago
- Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1☆48Updated 3 weeks ago
- An x64dbg plugin which helps make sense of long C++ symbols☆59Updated 2 years ago
- Remote Thread Detection with a Kernel Driver☆32Updated 8 months ago
- INF Studio for easier working with driver installation files☆39Updated last year
- A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.☆31Updated 3 years ago
- Tiny C header that allows easy hiding of WinAPI imports via PEB☆32Updated last month
- Windows driver template, using C++20 & cmake & GithubActions☆22Updated last year
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆73Updated 2 years ago
- silence file system monitoring components by hooking their minifilters☆59Updated last year
- ASUSTeK AsIO3 I/O driver unlock☆23Updated 4 years ago
- Demo from the Malware Analysis and Development Webinar☆23Updated last year
- BITS Transfers Manager☆43Updated 4 months ago
- Elevate arbitrary MSR writes to kernel execution.☆38Updated 2 years ago
- Using c++23 compile-time magic to produce obfuscated PIC strings and arrays.☆30Updated last year
- An x64dbg plugin which marks XFG call signatures as data☆77Updated 2 years ago
- ☆14Updated 2 years ago
- Signature finder (from PE-bear)☆39Updated last month
- Proof-of-concept game using VBS enclaves to protect itself from cheating☆43Updated 10 months ago
- research revolving the windows filtering platform callout mechanism☆33Updated last year
- File system minifilter driver for Windows to block symbolic link attacks.☆52Updated 4 years ago
- A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using Instrumentation…☆32Updated 2 years ago