ntoskrnl

There are 0 repository under ntoskrnl topic.

can1357 / NtRays
Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
hex-rays hex-rays-decompiler ntoskrnl windows-kernel
Language:C++ 481
ergrelet / windiff
Web-based tool that allows comparing symbol, type and syscall information of Microsoft Windows binaries across different versions of the OS.
diff ntoskrnl pdb portable-executable reverse-engineering web win32 windows undocumented nextjs rust syscalls insider preview
Language:Rust 309
ergrelet / resym
Cross-platform tool that allows browsing and extracting C and C++ type declarations from PDB files.
pdb cross-platform linux reverse-engineering symbols windows cli diff gui rust web ntoskrnl
Language:Rust 259
AndreyBazhan / SymStore
The history of Windows Internals via symbols.
windowsinternals windows-internals windows internals kernel symbols ntoskrnl hal ntdll
Language:C 177
MiroKaku / Nt-Modules
Collect different versions of Crucial modules.
ntoskrnl win32k ntdll user32
Language:Batchfile 123
sic
0vercl0k / sic
Enumerate user mode shared memory mappings on Windows.
driver vad prototype-pte shm ntoskrnl shared-memory windows-kernel windows-10
Language:C 112
gmh5225 / ntoskrnl_file_collection
Collect various versions of ntoskrnl files
windows driver version ntoskrnl file collection
46
RomanRybachek / CVE-2024-20698
Analysis of the vulnerability
cve integer-overflow ntoskrnl reverse-engineering vulnerability windows
Language:C++ 45
1hAck-0 / zeroimport
ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel driver by importing at runtime.
cpp cpp11 exports imports kernel kerneldriver kernelmode library ntoskrnl pe peheader windows
Language:C++ 41
keowu / InstrumentationCallbackToolKit
A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using InstrumentationCallback.
anticheat instrumentation malware nirvana ntoskrnl reverse-engineering syscall windows
Language:C++ 19
vtorres / ntoskrnl-offsets-dumper
Dump ntoskrnl.exe important offsets for building your navigation system in the Windows Kernel, using Radare2 and Rust
byovd kernel ntoskrnl radare2 rust windows
Language:Rust 7
WindowsDatabase / NtoskrnlStruct
All undocumented ntoskrnl structs crawled from vergiliusproject.com
ntoskrnl ntoskrnl-struct ntoskrnlstruct windows windows-kernel windowskernel
Language:C 3

ntoskrnl

can1357 / NtRays

ergrelet / windiff

ergrelet / resym

AndreyBazhan / SymStore

MiroKaku / Nt-Modules

0vercl0k / sic

gmh5225 / ntoskrnl_file_collection

RomanRybachek / CVE-2024-20698

1hAck-0 / zeroimport

keowu / InstrumentationCallbackToolKit

vtorres / ntoskrnl-offsets-dumper

WindowsDatabase / NtoskrnlStruct