Windows File System Proxy - FUSE for Windows
翻译 - Windows文件系统代理-Windows的FUSE
State-of-the-art native debugging tools
翻译 - HyperDbg调试器是一种开放源代码,用户模式和内核模式的Windows调试器,其重点是使用硬件技术。
Adversary tradecraft detection, protection, and hunting
翻译 - Windows内核探索和跟踪工具
Intel VT-x based hypervisor aiming to provide a thin VM-exit filtering platform on Windows.
Kernel mode WinDbg extension and PoCs for token privilege investigation.
翻译 - 用于令牌特权调查的内核模式 WinDbg 扩展和 PoC。
Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
翻译 - 用于自动简化 Windows 内核反编译的 Hex-Rays 微码插件。
Windows Storage Proxy Driver - User mode disk storage
翻译 - Windows Storage Proxy驱动程序-用户模式磁盘存储
kHypervisor is a lightweight bluepill-like nested VMM for Windows, it provides and emulating a basic function of Intel VT-x
翻译 - kHypervisor是适用于Windows的轻量级类似于蓝药的嵌套VMM,它提供并模拟Intel VT-x的基本功能
C++ STL in the Windows Kernel with C++ Exception Support
翻译 - 支持 C++ 异常的 Windows 内核中的 C++ STL
The Universal C++ RunTime library, supporting kernel-mode C++ exception-handler and STL.
A minimalistic educational hypervisor for Windows on AMD processors.
SimpleSvmHook is a research purpose hypervisor for Windows on AMD processors.
Tools and PoCs for Windows syscall investigation.
Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks
C/C++ Runtime library for system file (Windows Kernel Driver) - Supports Microsoft STL
Targeting Windows Kernel Driver Fuzzer
A native hypervisor designed for the Windows operating system
masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)