ntapi

Star

Here are 23 public repositories matching this topic...

KNSoft / KNSoft.NDK

Star

KNSoft.NDK provides native C/C++ definitions and import libraries for Windows NT and some specifications.

windows reverse-engineering ntdll windowsinternals ntapi sdk-windows

Updated Feb 20, 2025
C

ricardojoserf / TrickDump

Sponsor

Star

Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!

security-tools mimikatz lsass ntapi redteam-tools ntdll-unhooking lsass-dump

Updated Feb 6, 2025
C#

lzcapp / NotMe-BSOD

Star

Codes that could trigger BSOD (Blue Screen of Death) on Windows.

windows security security-audit winapi bsod bluescreen ntapi

Updated Jan 17, 2025
C

voidvxvt / HellBunny

Star

Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks

windows dll msvc malware-development shellcode-loader native-api process-injection ntapi shellcode-injection payload-encryption edr-bypass edr-evasion maldev dll-sideloading api-hashing direct-syscalls indirect-syscalls iat-camouflage

Updated Dec 22, 2024
C

A5M1 / fakewer

Star

contains code for fakewer, dll sideloading poc / writeup

c windows cpp poc bypass crowdstrike edr learnc ntapi sideloading malware-poc dllsideloading wermgr

Updated Dec 17, 2024
C#

ricardojoserf / NativeDump

Sponsor

Star

Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)

security-tools lsass ntapi redteam-tools ntdll-unhooking lsass-dump

Updated Dec 17, 2024
C#

ricardojoserf / NativeBypassCredGuard

Sponsor

Star

Bypass Credential Guard by patching WDigest.dll using only NTAPI functions

ntapi redteam-tools wdigest ntdll-unhooking credential-guard

Updated Dec 10, 2024
C#

brosck / APIHookingDetector

Star

「⚙️」Detect which native Windows API's (NtAPI) are being hooked

windows api detect native extractor extract detector hooking nt native-api ntapi

Updated Dec 7, 2024
C++

krystianbajno / winapi-search

Star

💠 Documented and undocumented WinAPI search.

windows dll functions winapi symbols syscalls win32 ntdll ntoskrnl ntapi

Updated Nov 14, 2024
TypeScript

reverseame / winapi-categories

Star

Windows API (WinAPI) functions and system calls with categories in JSON format, including arguments (SAL notation) and more.

windows winapi syscalls windows-api system-calls native-api ntapi windows-syscalls windows-functions

Updated Jul 11, 2024
Python

MauriceKayser / rs-winapi2

Star

Microsoft Windows user-mode API access with clean Rust types.

windows rust winapi ffi rust-lang win32 syscall nt ntapi sysenter

Updated Feb 12, 2024
Rust

Print3M / malware-dev

Star

Windows malware development C/C++ snippets.

windows winapi malware malware-development ntapi

Updated Dec 22, 2023
C

arimaqz / winapi-obfuscator

Star

obfuscate WINAPI/NTAPI calls easily.

winapi malware hacking redteaming ntapi malware-deve

Updated Oct 5, 2023
Python

f1zm0 / hades

Star

Go shellcode loader that combines multiple evasion techniques

golang pentesting syscalls evasion offensive-security av-evasion ntdll red-teaming adversary-emulation ntapi edr-evasion

Updated Jun 21, 2023
Go

0xvpr / offensive-kernel-mode-c

Star

A dedicated repository for exploring offensive kernel-mode techniques.

windows hacking windows-kernel malware-research offensive-security ntapi

Updated May 29, 2023
C

M2TeamArchived / NSudo

Star

[Deprecated, work in progress alternative: https://github.com/M2Team/NanaRun] Series of System Administration Tools

windows administration system launcher privileges session process token bypass trustedinstaller integritylevel nsudo ntapi devilmode accesscheck

Updated Dec 7, 2022
C++

apriorit / APIHookingLibraries

Star

Samples that shows how to use API Hook libraries: Detours, Deviare, MHook, EasyHook to hide files with the "+/*.txt" file name pattern.

windows api hook winapi api-hooking ntapi

Updated Sep 19, 2022
C++

diversenok / NtTools

Star

Some random system tools for Windows

windows system winapi windows-internals ntapi

Updated Apr 16, 2022
Pascal

tenox7 / regln

Star

Windows Rregistry Linking Utility

windows registry hive native link regedit ntapi

Updated May 25, 2021
C

diversenok / Things-AppContainer-Knows

Star

Disclosing information from an AppContainer.

windows appcontainer ntapi

Updated Sep 11, 2020
Pascal

Improve this page

Add a description, image, and links to the ntapi topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the ntapi topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

ntapi

Here are 23 public repositories matching this topic...

KNSoft / KNSoft.NDK

ricardojoserf / TrickDump

lzcapp / NotMe-BSOD

voidvxvt / HellBunny

A5M1 / fakewer

ricardojoserf / NativeDump

ricardojoserf / NativeBypassCredGuard

brosck / APIHookingDetector

krystianbajno / winapi-search

reverseame / winapi-categories

MauriceKayser / rs-winapi2

Print3M / malware-dev

arimaqz / winapi-obfuscator

f1zm0 / hades

0xvpr / offensive-kernel-mode-c

M2TeamArchived / NSudo

apriorit / APIHookingLibraries

diversenok / NtTools

tenox7 / regln

diversenok / Things-AppContainer-Knows

Improve this page

Add this topic to your repo