ntoskrnl · GitHub Topics

can1357 / NtRays

Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.

翻译 - 用于自动简化 Windows 内核反编译的 Hex-Rays 微码插件。

ntoskrnl windows-kernel hex-rays hex-rays-decompiler

C++ 579

1 个月前

ergrelet / windiff

Web-based tool that allows comparing symbol, type and syscall information of Microsoft Windows binaries across different versions of the OS.

diff ntoskrnl pdb portable-executable 逆向工程 Web win32 Windows undocumented Next Rust syscalls insider preview

Rust 332

5 天前

ergrelet / resym

Cross-platform tool that allows browsing and extracting C and C++ type declarations from PDB files.

pdb cross-platform Linux 逆向工程 symbols Windows 命令行界面 diff GUI Rust Web ntoskrnl

Rust 309

1 个月前

AndreyBazhan / SymStore

The history of Windows Internals via symbols.

翻译 - Windows Internals通过符号的历史记录。

windowsinternals windows-internals Windows internals Kernel symbols ntoskrnl hal ntdll

C 177

3 年前

MiroKaku / Nt-Modules

Collect different versions of Crucial modules.

ntoskrnl win32k ntdll

Batchfile 130

8 个月前

0vercl0k / sic

Enumerate user mode shared memory mappings on Windows.

driver vad ntoskrnl shared-memory windows-kernel Windows

C 117

4 年前

i32-Sudo / NmiCallbackBlocker

Kernel Level NMI Callback Blocker

blocker bypass callback driver Exploit hvci ntoskrnl patchguard Project undetected Windows

C++ 72

6 个月前

dmaivel / ntoseye

Windows kernel debugger for Linux hosts running Windows under KVM/QEMU

gdb kernel-debugger kvm Linux ntoskrnl pdb qemu qemu-kvm windbg Windows disassembler introspection lldb LLVM memory Lua

C++ 69

4 个月前

gmh5225 / ntoskrnl_file_collection

Collect various versions of ntoskrnl files

Windows driver version ntoskrnl file collection

1 年前

RomanRybachek / CVE-2024-20698

Analysis of the vulnerability

Common Vulnerabilities and Exposures (CVE)integer-overflow ntoskrnl 逆向工程 Windows vulnerability

C++ 49

1 年前

1hAck-0 / zeroimport

ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel driver by importing at runtime.

C++Kernel ntoskrnl Windows Library pe

C++ 48

2 年前

rft0 / km-dll-mapper

Kernel Mode DLL Manual Mapper

C C++DLL Injector injector ntoskrnl winapi Windows windows-kernel

C++ 27

4 个月前

keowu / InstrumentationCallbackToolKit

A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using InstrumentationCallback.

anticheat Instrumentation Malware ntoskrnl 逆向工程 syscall Windows

C++ 26

1 年前

vtorres / ntoskrnl-offsets-dumper

Dump ntoskrnl.exe important offsets for building your navigation system in the Windows Kernel, using Radare2 and Rust

byovd ntoskrnl radare2 Rust Windows Kernel

Rust 8

2 年前

krystianbajno / winapi-search

💠 Documented and undocumented WinAPI search.

dll functions symbols winapi Windows ntdll ntoskrnl win32 syscalls

TypeScript 8

4 个月前

i32-Sudo / eprocess-dkom-unlinking

EPROCESS Unlinking example in "C" using DKOM Manipulation

e link ntoskrnl patchguard process undetected

C++ 6

7 个月前

i32-Sudo / PsLoadedModuleList-Dkom-Unlinking

PsLoadedModuleList Unlinking through DKOM Manipulation

list module ntoskrnl patchguard process undetected

9 个月前

WindowsDatabase / NtoskrnlStruct

All undocumented ntoskrnl structs crawled from vergiliusproject.com

ntoskrnl Windows windows-kernel

C 3

2 年前

w1redch4d / NTDocs

A mirror of Windows NT Kernel Documentation

ntoskrnl

HTML 0

1 年前