0vercl0k / kdmp-parser-rsLinks
A KISS Rust crate to parse Windows kernel crash-dumps created by Windows & its debugger.
☆37Updated 4 months ago
Alternatives and similar repositories for kdmp-parser-rs
Users that are interested in kdmp-parser-rs are comparing it to the libraries listed below
Sorting:
- Report and exploit of CVE-2024-21305.☆36Updated last year
- Rust bindings for VMProtect.☆26Updated last year
- PEIM (UEFI) bootkit targeting OVMF (EDK2)☆35Updated last year
- A VMWare logger using built-in backdoor.☆29Updated 8 months ago
- PDB Rewriting Rust Library☆24Updated last year
- Helper idapython code for reversing kmdf drivers☆72Updated 2 years ago
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆55Updated 2 years ago
- Cargo subcommand to build a crate into shellcode☆24Updated 10 months ago
- Generate a PDB file given the old PDB file and an address mapping☆48Updated 3 months ago
- Rust bindings to the System Informer's (formerly known as Process Hacker) "phnt" native Windows headers☆45Updated 3 weeks ago
- Rust library for lifting raw binary data to LLVM IR☆52Updated 2 months ago
- A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.☆94Updated 8 months ago
- Reports and POCs for CVE 2024-43570 and CVE-2024-43535☆24Updated 2 weeks ago
- ☆46Updated 4 years ago
- A minimalistic logger for Windows Kernel Drivers.☆24Updated last year
- WslinkVMAnalyzer is a tool to facilitate analysis of code protected by a virtual machine featured in Wslink malware☆46Updated 3 years ago
- A years-old exploit of a local EoP vulnerability in Kingsoft Antivirus KWatch Driver version 2009.3.17.77.☆38Updated 3 years ago
- Extract data of TTD trace file to a minidump☆28Updated last year
- A set of LLVM and GCC based plugins that perform code obfuscation.☆124Updated 2 weeks ago
- Command like tool to print mitigation flags for running processes in a memory dump☆46Updated 4 years ago
- Disassembler for Zeus VM custom instruction set☆28Updated last year
- WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API☆23Updated 3 years ago
- IDA plugin to recover source code from panic information on rust☆15Updated last month
- Research-focused hypervisor offering advanced tools for debugging, virtual machine introspection, and automation.☆20Updated last month
- Different tools for Microsoft Hyper-V researching☆57Updated last year
- Hyper-V related resources☆31Updated last year
- Windows kernel PDB data parsed into YAML☆37Updated 7 months ago
- LLVM obfuscation pass, flattening at the basic block's level and turning each basic block into a dispacher and each instruction into a ne…☆47Updated 3 years ago
- Proof-of-concept game using VBS enclaves to protect itself from cheating☆40Updated 7 months ago
- Remove WPP calls from hexrays decompiled code☆49Updated 2 months ago