A free Windows-compatible Operating System

A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals…

This repo contains driver samples prepared for use with Microsoft Visual Studio and the Windows Driver Kit (WDK). It contains both Universal Windows Driver and desktop-only driver samples.

Porting Windows Dynamic Link Libraries to Linux

State-of-the-art native debugging tools

Library to load a DLL from memory.

A fork of AFL for fuzzing Windows binaries

Hardware backdoors in some x86 CPUs

Interactive CTF Exploration Tool

Set of tests for fuzzing engines

Intel / AMD CPU Internals

Turn off PatchGuard in real time for win7 (7600) ~ later

Universal PatchGuard and Driver Signature Enforcement Disable

My notes while studying Windows internals

The Minimal LZMA (minlzma) project aims to provide a minimalistic, cross-platform, highly commented, standards-compliant C library (minlzlib) for decompressing LZMA2-encapsulated compressed data in…

A library to read/write memory to Windows on KVM

Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999

Hide codes/data in the kernel address space.

Windows KASLR bypass using prefetch side-channel

Kernel Detective

0CCh Windbg extension: include some useful commands

powerd exploit : Sandbox escape to root for Apple iOS < 12.2 on A11 devices

Intel Virtualization Technology demo

Blocks drivers from loading by using a name collision technique. #nsacyber

DiskCryptor - Open source partition encryption solution

Kernel-Mode rootkit that connects to a remote server to send & recv commands

A simple ransomware defender.It uses minifilter to filt "rewrite" and "delete" events in kernel.And it handles event in user mode.

This repo contains PHP ZEND Thread Safe Ressource Management algorithm analysis