0cch / 0cchext

Related projects ⓘ

Alternatives and complementary repositories for 0cchext

• progmboy / win32kext
  windbg plugin for win32k debugging
  ☆72Updated 5 years ago
• markhc / windbg_to_c
  Translates WinDbg "dt" structure dump to a C structure
  ☆126Updated 8 years ago
• vagnerpilar / windbgtree
  A command tree based on commands and extensions for Windows Kernel Debugging.
  ☆105Updated 4 years ago
• wbenny / EtwConsumerNT
  Simple project that demonstrates how an ETW consumer can be created just by using NTDLL
  ☆135Updated 5 years ago
• tandasat / EopMon
  Elevation of privilege detector based on HyperPlatform
  ☆117Updated 7 years ago
• Cisco-Talos / DynDataResolver
  ☆221Updated last year
• RolfRolles / FinSpyVM
  Static unpacker for FinSpy VM
  ☆97Updated 3 years ago
• tandasat / findpg
  Windbg extension to find PatchGuard pages
  ☆117Updated 10 years ago
• yardenshafir / KernelDataStructureFinder
  Driver and WinDBG scripts to dump information about all resources and lookaside lists
  ☆66Updated 4 years ago
• pstolarz / dumpext
  WinDbg debugger extension library providing various tools to analyse, dump and fix (restore) Microsoft Portable Executable files for both…
  ☆81Updated 2 months ago
• ntdiff / ntdiff
  ☆120Updated last month
• SinaKarvandi / windbg2ida
  Windbg2ida lets you dump each step in Windbg then shows these steps in IDA
  ☆73Updated 4 months ago
• gerhart01 / LiveCloudKd
  Hyper-V Research is trendy now
  ☆150Updated last month
• airbus-cert / comida
  An IDA Plugin that help analyzing module that use COM
  ☆198Updated last year
• msuiche / LiveCloudKd
  Hyper-V Research is trendy now
  ☆172Updated 6 months ago
• avalon1610 / ALPC
  Advance LPC
  ☆59Updated 7 years ago
• ntdiff / headers
  ☆151Updated last month
• KelvinMsft / DeviceMon
  VT-based PCI device monitor (SPI)
  ☆150Updated 4 years ago
• hugsy / windbg_js_scripts
  Toy scripts for playing with WinDbg JS API
  ☆220Updated 4 months ago
• tandasat / PgResarch
  PatchGuard Research
  ☆292Updated 6 years ago
• marcusbotacin / BranchMonitoringProject
  A branch-monitor-based solution for process monitoring.
  ☆128Updated 4 years ago
• zodiacon / ALPCLogger
  Log ALPC activity
  ☆80Updated last year
• zer0fl4g / DebugDetector
  ☆115Updated 12 years ago
• OSRDrivers / kmexts
  Simple driver to register all available process, thread, image, Registry, and Object callbacks
  ☆117Updated 7 years ago
• fishstiqz / poolinfo
  kernel pool windbg extension
  ☆79Updated 9 years ago
• tandasat / WinIoCtlDecoder
  IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.
  ☆105Updated 11 months ago
• 0xcpu / WinAltSyscallHandler
  Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999
  ☆205Updated 5 years ago
• yardenshafir / SymlinkCallback
  A driver that hooks C: volume using symbolic link callback to track all FS access to the volume
  ☆102Updated 4 years ago