A reference of Windows API function calls, including functions for file operations, process management, memory management, thread management, dynamic-link library (DLL) management, synchronization,…

Windows Object Explorer 64-bit

Web-based tool that allows comparing symbol, type and syscall information of Microsoft Windows binaries across different versions of the OS.

Windows Kernel Knowledge && Collect Resources on the wire && Nothing innovation by myself &&

A mini filter driver development framework allows you to develop minit filter driver with different features.

Samples from my book Windows Native API programming

Monitors ETW for security relevant syscalls maintaining the set called by each unique process

The Windows Kernel Programming book samples

Windows System Call Tables (NT/2000/XP/2003/Vista/7/8/10/11)