Windows syscalls, decoded.
Cross-version syscall IDs, prototypes, kernel context, malware references and detection telemetry — all in one place.
What you get
Per-syscall reference
Numbers, prototypes, kernel module, stub bytes, ATT&CK mappings — for every documented Nt* syscall.
Cross-version mapping
Syscall IDs across Windows 10, 11, Server and Insider builds. Pivot by name or by ID.
Stub generator
Generate direct syscall stubs in C, ASM, Rust, Nim and Go — Hell's Gate, Halo's Gate, SysWhispers-style.
Detection engineering
ETW providers, Sysmon event IDs and EDR telemetry relevance for blue teams.