Interactive CTF Exploration Tool
-
Updated
Sep 17, 2021 - C
#
windows-internals
Here are 15 public repositories matching this topic...
An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in general (sandboxing).
python windows emulator cross-platform sandbox x64 reverse-engineering malware python3 easy-to-use malware-analyzer malware-analysis malware-research unicorn hacktoberfest debugging-tools minidump unpacking windows-internals
-
Updated
Feb 2, 2024 - C
Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".
workshop shellcode syscalls malware-analysis malware-development shellcode-loader antivirus-evasion windows-internals edr-bypass edr-evasion antivirus-bypass malware-development-guide direct-syscalls indirect-syscalls
-
Updated
Jan 19, 2024 - C
UltimateAnticheat is an open source usermode anti-cheat system made to detect and prevent common attack vectors in game cheating (C++, Windows)
cplusplus game-hacking anticheat anti-cheat anti-debugging windows-internals game-cheat code-integrity game-security game-security-tools game-cheating-prevention
-
Updated
Mar 15, 2025 - C
My notes while studying Windows internals
-
Updated
Dec 9, 2024 - C
The history of Windows Internals via symbols.
-
Updated
Nov 4, 2021 - C
An example of a client and server using Windows' ALPC functions to send and receive data.
-
Updated
Jan 21, 2025 - C
Windows 10 PE image loader (LDR) NTDLL component toolbox
-
Updated
Oct 22, 2019 - C
An example of how to use Microsoft Windows Warbird technology
-
Updated
Apr 23, 2023 - C
Dump syscall numbers from ntdll.dll
-
Updated
Oct 20, 2020 - C
Reversing and recreating the Windows 10 image loader (usermode, x86)
-
Updated
Nov 27, 2024 - C
Solutions to Windows Kernel Programming exercises by Pavel Yosifovich
-
Updated
Nov 2, 2020 - C
SSN parser/extractor for AV/EDR evasion
windows winapi malware windows-kernel syscalls malware-development redteam windows-internals windows-syscalls
-
Updated
Oct 7, 2024 - C
Implementing NtCreateUserProcess with Indirect Syscalls Technique.
-
Updated
Jan 10, 2025 - C
windows linux containers x86-64 reverse-engineering linux-kernel hacking x86 intrinsics syscalls crt syscall nt wow64 windows-internals x86-assembly heavens-gate nocrt nt-kernel
-
Updated
Jun 21, 2023 - C
Improve this page
Add a description, image, and links to the windows-internals topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the windows-internals topic, visit your repo's landing page and select "manage topics."