Documenting system information classes and their uses

A C++11 library for reading Microsoft Program DataBase PDB files

RpcView is a free tool to explore and decompile Microsoft RPC interfaces

Kernel Exploits

collect for learning cases

Unofficial Common Log File System (CLFS) Documentation

A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http:https://www.windows-internals…

Engineering specs for DirectX features.

Samples for the book Windows Kernel Programming, 2nd edition

Privilege Escalation Enumeration Script for Windows

codes for my blog post: https://secrary.com/Random/InstrumentationCallback/

A codebase aimed to make interaction with Windows and native execution easier

C/C++ Runtime library for system file (Windows Kernel Driver) - Supports Microsoft STL

Windows x64 handcrafted token stealing kernel-mode shellcode

short crackme for Windows XP SP3 (32 bit version). ring0 stuff. IMO very fun x-)

Advanced driver monitoring utility.

File system minifilter driver for Windows to block symbolic link attacks.

Miscellaneous Code and Docs

Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)

x86 OS development using Bochs emulator. MIT xv6, JamesM's kernel development tutorials (with some changes) & more

Hook system calls, context switches, page faults and more.

InfinityHookPro Win7 -> Win11 latest

a Japanese food keeps you sane

The Kernel-Mode Winsock library, supporting TCP, UDP and Unix sockets (DGRAM and STREAM).

KSOCKET provides a very basic example how to make a network connections in the Windows Driver by using WSK

The multi-platform memory acquisition tool.

Official DirectX headers available under an open source license

Hiding kernel-driver for x86/x64.

Load self-signed drivers without TestSigning or disable DSE. Transferred from https://github.com/DoubleLabyrinth/Windows10-CustomKernelSigners