1111joe1111 / tutsLinks
Reverse engineering tutorials
☆158Updated 7 years ago
Alternatives and similar repositories for tuts
Users that are interested in tuts are comparing it to the libraries listed below
Sorting:
- Python scripts for reverse engineering.☆184Updated 4 years ago
- idenLib - Library Function Identification [This project is not maintained anymore]☆394Updated 6 years ago
- A project that aims to automatically devirtualize code that has been virtualized using x86virt☆126Updated 2 years ago
- Debug Child Process Tool (auto attach)☆298Updated 2 years ago
- Static unpacker for FinSpy VM☆102Updated 4 years ago
- A collection of my IDA plugins☆135Updated 5 years ago
- Persistent IAT hooking application - based on bearparser☆257Updated 3 years ago
- Another RTTI Parsing IDA plugin☆304Updated 2 years ago
- An IDA Plugin that help analyzing module that use COM☆222Updated 2 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆436Updated 7 years ago
- ☆227Updated 2 years ago
- DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.☆365Updated 5 years ago
- ☆181Updated 6 years ago
- idamagnum is a plugin for integrating MagnumDB requests within IDA☆133Updated 5 years ago
- x64dbg plugin to check security settings☆136Updated 8 years ago
- IDA Signsrch☆157Updated 10 years ago
- Import address table (IAT) hooking is a well documented technique for intercepting calls to imported functions.☆221Updated 7 years ago
- My repository to upload drivers from different books and all the information related to windows internals.☆157Updated 6 years ago
- This is a place to share my miscellaneous projects.☆114Updated 5 years ago
- A plugin based on IDAPython for a functional DWIM interface. Current development against most recent IDA is in the "persistence-refactor"…☆327Updated 2 weeks ago
- Reverse engineering tool for virtualization wrappers☆144Updated 2 years ago
- ☆243Updated 10 years ago
- Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code☆184Updated 4 years ago
- MemoryRanger protects kernel data and code by running drivers and hosting data in isolated kernel enclaves using VT-x and EPT features. M…☆229Updated 5 years ago
- Automatically rebuild Import Address Table for dumped PE file. With python bindings!☆121Updated 6 years ago
- Multi-purpose proof-of-concept tool based on CPU-Z CVE-2017-15303☆110Updated 7 years ago
- abyss - augmentation of Hexrays decompiler output☆347Updated 2 years ago
- Translates WinDbg "dt" structure dump to a C structure☆131Updated 8 years ago
- PatchGuard Research☆303Updated 6 years ago
- Hypervisor based tool for monitoring system register accesses.☆147Updated 7 years ago