Stars
An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
Compatibility tool for Steam Play based on Wine and additional components
Scalable, Portable and Distributed Gradient Boosting (GBDT, GBRT or GBM) Library, for Python, R, Java, Scala, C++ and more. Runs on single machine, Hadoop, Spark, Dask, Flink and DataFlow
Compatibility tool for Steam Play based on Wine and additional components
A data visualization and analytics component, especially well-suited for large and/or streaming datasets.
Detours is a software package for monitoring and instrumenting API calls on Windows. It is distributed in source code form.
Static analyzer for C/C++ based on the theory of Abstract Interpretation.
User interface for recording and managing ETW traces
Tooling to generate metadata for Win32 APIs in the Windows SDK.
Userspace eBPF runtime for Observability, Network, GPU & General Extensions Framework
VirtualKD-Redux - A revival and modernization of VirtualKD
Sample extensions, scripts, and API uses for WinDbg.
The Windows Kernel Programming book samples
A Windows packet filtering library that enables low-level network packet interception, inspection, and modification. Ideal for building custom firewalls, VPN solutions, intrusion detection systems,β¦
This repository will be updated with all the examples and links that I can find with relevant knowledge & information about CP in MS Windows vista up to version 10.
ETW based POC to identify direct and indirect syscalls
Tooling to generate metadata for Win32 APIs in the Windows Driver Kit (WDK).
Ransomware detection application for Windows using Windows Minifilter driver
A ProcMon-esque tool for monitoring Windows Kernel Drivers
Experimental: A rust library to monitor filesystem πͺ and more in windows
Malware Classification and Labelling using Deep Neural Networks
The Dell G5SE-5505 laptop isn't working with usual fan managers, this script is a basic alternative