ntoskrnl

Star

Here are 19 public repositories matching this topic...

can1357 / NtRays

Star

Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.

windows-kernel hex-rays-decompiler hex-rays ntoskrnl

Updated Dec 25, 2024
C++

ergrelet / windiff

Star

Web-based tool that allows comparing symbol, type and syscall information of Microsoft Windows binaries across different versions of the OS.

windows rust diff web pdb nextjs reverse-engineering preview syscalls win32 portable-executable undocumented ntoskrnl insider

Updated Jan 4, 2025
Rust

ergrelet / resym

Star

Cross-platform tool that allows browsing and extracting C and C++ type declarations from PDB files.

windows linux rust cli diff gui web cross-platform pdb reverse-engineering symbols ntoskrnl

Updated Aug 26, 2024
Rust

AndreyBazhan / SymStore

Star

The history of Windows Internals via symbols.

windows kernel symbols internals hal ntdll windows-internals ntoskrnl windowsinternals

Updated Nov 4, 2021
C

MiroKaku / Nt-Modules

Star

Collect different versions of Crucial modules.

ntdll user32 win32k ntoskrnl

Updated Jul 11, 2024
Batchfile

0vercl0k / sic

Sponsor

Star

Enumerate user mode shared memory mappings on Windows.

driver windows-10 windows-kernel vad shm shared-memory ntoskrnl prototype-pte

Updated Feb 14, 2021
C

dmaivel / ntoseye

Star

Windows kernel debugger for Linux hosts running Windows under KVM/QEMU

windows linux lua memory pdb llvm disassembler gdb kvm qemu introspection windbg lldb qemu-kvm kernel-debugger ntos ntoskrnl

Updated Oct 31, 2024
C++

i32-Sudo / NmiCallbackBlocker

Star

Kernel Level NMI Callback Blocker

windows exploit driver project callback blocker bypass eac be nmi patchguard undetected ntoskrnl hyperguard hvci

Updated Aug 29, 2024
C++

gmh5225 / ntoskrnl_file_collection

Sponsor

Star

Collect various versions of ntoskrnl files

windows collection driver file version ntoskrnl

Updated Jan 10, 2024

1hAck-0 / zeroimport

Star

ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel driver by importing at runtime.

windows library kernel cpp cpp11 pe exports imports ntoskrnl kernelmode peheader kerneldriver

Updated Mar 22, 2023
C++

RomanRybachek / CVE-2024-20698

Star

Analysis of the vulnerability

windows reverse-engineering vulnerability cve ntoskrnl integer-overflow

Updated Jan 23, 2024
C++

keowu / InstrumentationCallbackToolKit

Star

A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using InstrumentationCallback.

windows reverse-engineering malware instrumentation anticheat nirvana syscall ntoskrnl

Updated Sep 23, 2023
C++

rft0 / km-dll-mapper

Star

Kernel Mode DLL Manual Mapper

c windows cpp winapi windows-kernel injector exploiting dll-injector manualmap ntoskrnl manualmapper dll-manual-mapper

Updated Nov 2, 2024
C++

krystianbajno / winapi-search

Star

💠 Documented and undocumented WinAPI search.

windows dll functions winapi symbols syscalls win32 ntdll ntoskrnl ntapi

Updated Nov 14, 2024
TypeScript

vtorres / ntoskrnl-offsets-dumper

Star

Dump ntoskrnl.exe important offsets for building your navigation system in the Windows Kernel, using Radare2 and Rust

windows rust kernel radare2 ntoskrnl byovd

Updated Nov 1, 2022
Rust

i32-Sudo / eprocess-dkom-unlinking

Star

EPROCESS Unlinking example in "C" using DKOM Manipulation

process link e un unlinking patchguard undetected ntoskrnl unlink decom eprocess

Updated Aug 26, 2024
C++

WindowsDatabase / NtoskrnlStruct

Star

All undocumented ntoskrnl structs crawled from vergiliusproject.com

windows windows-kernel ntoskrnl windowskernel ntoskrnlstruct ntoskrnl-struct

Updated Aug 30, 2023
C

i32-Sudo / PsLoadedModuleList-Dkom-Unlinking

Star

PsLoadedModuleList Unlinking through DKOM Manipulation

list module process dkom unlinking patchguard undetected ntoskrnl eprocess psloadedmodulelist

Updated Jun 10, 2024

w1redch4d / NTDocs

Star

A mirror of Windows NT Kernel Documentation

ntoskrnl windowsnt ntoskrnl-struct

Updated Apr 15, 2024
HTML

Improve this page

Add a description, image, and links to the ntoskrnl topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the ntoskrnl topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

ntoskrnl

Here are 19 public repositories matching this topic...

can1357 / NtRays

ergrelet / windiff

ergrelet / resym

AndreyBazhan / SymStore

MiroKaku / Nt-Modules

0vercl0k / sic

dmaivel / ntoseye

i32-Sudo / NmiCallbackBlocker

gmh5225 / ntoskrnl_file_collection

1hAck-0 / zeroimport

RomanRybachek / CVE-2024-20698

keowu / InstrumentationCallbackToolKit

rft0 / km-dll-mapper

krystianbajno / winapi-search

vtorres / ntoskrnl-offsets-dumper

i32-Sudo / eprocess-dkom-unlinking

WindowsDatabase / NtoskrnlStruct

i32-Sudo / PsLoadedModuleList-Dkom-Unlinking

w1redch4d / NTDocs

Improve this page

Add this topic to your repo