Alnoor's starred repositories
readdirectorychanges
Sample code that goes with "Understanding ReadDirectoryChangesW"
x509-cert-testcorpus
X.509 certificate test corpus that was scraped from public TLS servers
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
ghidra-scripts
A collection of my Ghidra scripts to facilitate reverse engineering and vulnerability research.
ETW-Almulahaza
ETW-Almulahaza is a consumer python-based tool that help you monitor ETW events of the operating system
malware_training_vol1
Materials for Windows Malware Analysis training (volume 1)
awesome-executable-packing
A curated list of awesome resources related to executable packing
PoolmonViz
Powershell script to view kernel memory pool information
WinObjEx64
Windows Object Explorer 64-bit
windowskernelprogrammingbook
The Windows Kernel Programming book samples
sysmon-modular
A repository of sysmon configuration modules
Windows-Containers
Welcome to our Windows Containers GitHub community! Ask questions, report bugs, and suggest features -- let's work together.
dotnet-computevirtualization
Sample class library for interfacing with Windows host compute service.
ApplicationInspector
A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.