• Stars
    star
    21
  • Rank 1,084,038 (Top 22 %)
  • Language
    C++
  • License
    MIT License
  • Created 3 months ago
  • Updated 2 months ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Sample for Creating a new kernel object type and supporting API

More Repositories

1

WindowsInternals

Windows Internals Book 7th edition Tools
C
2,359
star
2

TotalRegistry

Total Registry - enhanced Registry editor/viewer
C++
1,360
star
3

AllTools

All reasonably stable tools
1,138
star
4

SystemExplorer

Windows System Explorer
C
829
star
5

windowskernelprogrammingbook

The Windows Kernel Programming book samples
C++
594
star
6

ProcMonXv2

Process Monitor X v2
C++
579
star
7

ProcMonX

Extended Process Monitor-like tool based on Event Tracing for Windows
C#
462
star
8

EtwExplorer

View ETW Provider manifest
C#
416
star
9

Win10SysProgBookSamples

Windows 10 System Programming book samples
C++
406
star
10

PEExplorerV2

Portable Executable Explorer version 2
C
399
star
11

DriverMon

Monitor activity of any driver
C#
326
star
12

windowskernelprogrammingbook2e

Samples for the book Windows Kernel Programming, 2nd edition
C++
285
star
13

WFPExplorer

Windows Filtering Platform Explorer
C++
201
star
14

ObjectExplorer

Explore Kernel Objects on Windows
C++
195
star
15

WinSpy

Enhanced version of the classic Spy++ tool
C++
171
star
16

QuickAsm

Simple x86/x64 Assembler/Disassembler/Emulator
C++
161
star
17

PEExplorer

Portable Executable Explorer
C#
153
star
18

TotalPE2

PE Viewer
C++
143
star
19

TotalPE

Yet another PE Viewer
C++
137
star
20

sysrun

Run any executable as SYSTEM account (no service required)
C++
119
star
21

PoolMonXv2

Kernel Pool Monitor
C++
119
star
22

rust-course

116
star
23

RunAppContainer

Run executables in an AppContainer
C++
115
star
24

CLRExplorer

Explore .NET Processes and Dump files
C++
115
star
25

PoolMonX

A GUI version of the classic PoolMon tool
C++
109
star
26

WinDbgX

An attempt to create a friendly version of WinDbg
C#
93
star
27

ApiSetView

API Set Viewer
C++
84
star
28

NetworkExplorer

Windows Network Information
C++
83
star
29

GflagsX

Enhanced version of the GFlags tool
C#
82
star
30

PdbView

PdbView shows the contents of PDB files
C#
80
star
31

ALPCLogger

Log ALPC activity
C#
80
star
32

JobExplorer

Explore Job Objects on a Windows system
C++
80
star
33

DllInjectionWithThreadContext

This is a sample that shows how to leverage SetThreadContext for DLL injection
C++
79
star
34

Recon2023

Recon 2023 slides and code
C++
77
star
35

WinSys

C++ library for low-level Windows development
C++
69
star
36

DbgPrint

Debug Print viewer (user and kernel)
C++
64
star
37

ProcExpX

C++
64
star
38

KernelObjectView

View handles and object for each object type
C++
62
star
39

syllabi

60
star
40

PoolMonXv3

Monitor Kernel pool allocations tags
C++
57
star
41

winnativeapibooksamples

Samples from my book Windows Native API programming
C++
54
star
42

VerifierDLL

Example of building an application verifer DLL
C++
45
star
43

WTLHelper

WTL helper library
C++
42
star
44

PerfMonX

PerfMonX is an enhanced Performance Monitor tool
C#
41
star
45

WinEventHooks

SetWinEventHook Sample
C++
40
star
46

DotNetExp

C++
39
star
47

DeviceExplorer

C++
38
star
48

BITSManager

BITS Transfers Manager
C++
38
star
49

DepWalk

C++
37
star
50

CPUStress

CPU Stress v3.0
C++
36
star
51

InfStudio

INF Studio for easier working with driver installation files
C++
36
star
52

DotNextSP2019

DotNext 2019 St. Petersburg Talk Demos
C#
36
star
53

NativeApps

Demos and presentation from SECArmy Village Grayhat 2020
C
36
star
54

TotalSystem

View Windows System in action
C++
36
star
55

ObjectBrowser

An alternative tool to Sysinternals WinObj tool (nicer icons!)
C++
34
star
56

ObjMgrProjFS

Projected File System Sample (Object Manager Namespace)
C++
33
star
57

ndcoslo2019

NDC Oslo 2019 slides and demos
C++
32
star
58

ManagedWindows

Managed wrappers around the Windows API and some Native API
C#
32
star
59

DllIconHandler

Shows different icons for 64 and 32-bit DLLs. Register with RegSvr32 to install
C++
32
star
60

PEParser

Portable Executable parsing library, used by PEExplorer. Also available as a nuget package
C#
31
star
61

youtubecode

Youtube channel sample code
C++
31
star
62

Blog

Blog posts
30
star
63

DirectUI

C++
30
star
64

BgInfo

BgInfo is a WPF variant on the Sysinternals BgInfo tool.
C#
28
star
65

DotNextMoscow2019

DotNextMoscow2019
C++
28
star
66

TaskSched

C++
26
star
67

NtfsStreams

Viewing NTFS alternate streams in files
C#
26
star
68

DebugHelp

.NET wrapper for dbghelp.dll
C#
21
star
69

RegistryExplorer

C#
21
star
70

InterceptionDemo

Sample showing the use of CoGetInterceptor
C++
21
star
71

MetroManager

C#
21
star
72

HexStudio

Hex Studio is a work in progress Hex viewer and editor.
C#
20
star
73

ObjDir

Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.
C++
19
star
74

MalDevWorkshopWebinar

Demo from the Malware Analysis and Development Webinar
C++
19
star
75

SrvDrv

Services and Drivers control application
C#
18
star
76

WindowTitleEx

WindowTitleEx shows the HWND, thread ID and process in Windows titles. Tray icon to remove these extra is included.
C#
18
star
77

StructuredStorage

C++ wrapper for the Windows structured storage implementation known as Compound Files
C++
18
star
78

AccessMask

C++
18
star
79

ErrorLookup

Simple error lookup for Win32 and NTSTATUS errors
C++
17
star
80

Minimal

C++
16
star
81

winsta

Show Window Stations, Desktops and top level windows
C++
15
star
82

VirtualDiskService

C#
15
star
83

NativePowers

Native Powers Talk demos
C++
15
star
84

Zodiacon.WPF

WPF helper library
C#
14
star
85

WMIExplorer

C++
13
star
86

CalculatorX

An expression calculator
C#
12
star
87

pstools-rust

Rust
12
star
88

DotNext2018

C#
12
star
89

Logo2

C++
11
star
90

objdir-rs

Rust version of the objdir tool
Rust
11
star
91

CoreCpp21Demos

C++
9
star
92

QSlice2

Tribute to the classic QSlice tool
C++
7
star
93

DotNextPieter2021

DotNext 2021 Pieter slides and demos
C#
7
star
94

QSlice

C#
6
star
95

MandelImGui

Simple Mandelbrot set with Dear ImGUI
C++
5
star
96

Timer

Simple timer
C++
5
star
97

MonikerFun

Demonstrating a simple moniker.
C++
5
star
98

SpriteSheet

Simple Sprite Sheet creator
C#
4
star
99

Presentations

public presentation materials
3
star
100

AsyncMandelbrotColor

Fun with the Mandelbrot Set
C#
3
star