Windows 10 PE image loader (LDR) NTDLL component toolbox
-
Updated
Oct 22, 2019 - C
Windows 10 PE image loader (LDR) NTDLL component toolbox
Dump syscall numbers from ntdll.dll
woftool is a proof-of-concept utility for creating WOF-compressed files
Collection of shellcode injection and execution techniques
The history of Windows Internals via symbols.
Proof of concept for injecting a 64-bit DLL into a 32-bit application
A single header for undocumented windows function definitions
Debug Child Process Tool (auto attach)
The project consists of a service that utilizes advanced techniques to inject a Payload into its own process, specifically the Windows RuntimeBroker.exe
Add a description, image, and links to the ntdll topic page so that developers can more easily learn about it.
To associate your repository with the ntdll topic, visit your repo's landing page and select "manage topics."