Interactive CTF Exploration Tool
PoCs and tools for investigation of Windows process execution techniques
An easy-to-use library for emulating memory dumps. Useful for malware an...
A lightweight native DLL mapping library that supports mapping directly ...
An advanced tool for working with access tokens and Windows security pol...
A wrapper library around native windows sytem APIs
:fish: PoC of a VBA macro spawning a process with a spoofed parent and c...
My notes while studying Windows internals
Manipulating and Abusing Windows Access Tokens.
Intercept Windows Named Pipes communication using Burp or similar HTTP p...
Single header version of System Informer's phnt library.
A manual system call library that supports functions from both ntdll.dll...
Some random system tools for Windows
Delphi library for system programming on Windows using Native API
WNF Utilities 4 Newbies (WNFUN)