Windows NT Syscall tables
Windows System Call Tables (NT/2000/XP/2003/Vista/7/8/10/11)
翻译 - Windows系统调用表(NT / 2000 / XP / 2003 / Vista / 2008/7/2012/8/10)
System call hook for Windows 10 20H1
Syscall Monitor is a system monitor program (like Sysinternal's Process Monitor) using Intel VT-X/EPT for Windows7+
The system call intercepting library
Inline syscalls made easy for windows on clang
翻译 - 内联系统调用使Clang上的Windows变得容易
Syscall Shellcode Loader (Work in Progress)
windows syscall table from xp ~ 10 rs4
LuaJIT Unix syscall FFI
Dectect syscall hooking using eBPF
WASI syscall API built atop libuv
Tools and PoCs for Windows syscall investigation.
A kernelspace syscall interceptor and randomized faulter
翻译 - 内核空间系统调用拦截器和随机故障处理程序
Userspace eBPF runtime for Observability, Network & General Extensions Framework
Some source code to demonstrate avoiding certain direct syscall detections by locating and JMPing to a legitimate syscall instruction within NTDLL.
Generate JSON system call info from Linux source
UUID shellcode Loader with dynamic indirect syscall implementation, syscall number/instruction get resolved dynamicaly at runtime, and the syscall number/instruction get unhooked using Halosgate techn...
Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2
x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration