The history of Windows Internals via symbols.

• UpdatedNov 4, 2021
• C

CallMon is an experimental system call monitoring tool that works on Windows 10 versions 2004+ using PsAltSystemCallHandlers

• UpdatedSep 5, 2020
• C

Windows Kernel Programming

• UpdatedMay 11, 2020
• C++

WNF Utilities 4 Newbies (WNFUN)

• UpdatedDec 6, 2018
• Python

A ProcMon-esque tool for monitoring Windows Kernel Drivers

• UpdatedMay 31, 2021
• C++

Modern C++ wrapper for Windows PE signature verification mechanism

• UpdatedAug 9, 2019
• C++

KNSoft.NDK provides native C/C++ definitions and import libraries for Windows NT and some specifications.

• UpdatedMar 9, 2025
• C

Practical Reverse Engineering Exercises

• UpdatedAug 20, 2022
• C++

Useful PDFs to learn Reverse engineering, Assembly, C and Windows Internals.

• UpdatedFeb 16, 2025

This is a simple Kernel Driver that removes the annoying flashbang effect in CS2 by modifying the flash duration ! It works using IOCTL communication for smooth and efficient memory manipulation. ⚡😎

• UpdatedMar 25, 2025
• C

This is a dumping zone for random things which I tend to forget or stumble upon doing some stuff. Stuff related to windows internals, debugging, security and computers.

• UpdatedApr 12, 2023
• SCSS

Implementation of the Process Hollowing technique for process injection (This is the second of three methods in the series)

• UpdatedAug 9, 2024
• C++

Implementation of the Process Injection technique for DLL file injection

• UpdatedAug 18, 2024
• C++

Implementation of the Process Hollowing technique for process injection (This is the third of three methods in the series)

• UpdatedAug 9, 2024
• C++

Implementation of the Process Hollowing technique for process injection (This is the first of three methods in the series)

• UpdatedAug 9, 2024
• C++