1111joe1111 / tuts
Reverse engineering tutorials
☆155Updated 6 years ago
Related projects: ⓘ
- idenLib - Library Function Identification [This project is not maintained anymore]☆389Updated 5 years ago
- Python scripts for reverse engineering.☆178Updated 3 years ago
- Debug Child Process Tool (auto attach)☆267Updated last year
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆420Updated 6 years ago
- IDA Signsrch☆150Updated 9 years ago
- A collection of my IDA plugins☆130Updated 4 years ago
- Another RTTI Parsing IDA plugin☆275Updated last year
- ☆103Updated 2 years ago
- A project that aims to automatically devirtualize code that has been virtualized using x86virt☆125Updated last year
- ☆220Updated last year
- PEDA-like debugger UI for WinDbg☆198Updated 5 months ago
- DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.☆350Updated 4 years ago
- abyss - augmentation of Hexrays decompiler output☆324Updated last year
- Static unpacker for FinSpy VM☆97Updated 3 years ago
- Persistent IAT hooking application - based on bearparser☆246Updated 2 years ago
- An IDA Plugin that help analyzing module that use COM☆198Updated last year
- PatchGuard Research☆290Updated 5 years ago
- IFL - Interactive Functions List (plugin for IDA Pro)☆422Updated 2 months ago
- ☆171Updated 5 years ago
- Official x64dbg plugin for IDA Pro.☆440Updated last year
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆203Updated 4 years ago
- A plugin based on IDAPython for a functional DWIM interface. Current development against most recent IDA is in the "persistence-refactor"…☆313Updated 3 weeks ago
- Fuzzy search tool for IDA Pro.☆197Updated 4 years ago
- ☆219Updated this week
- IDA Sploiter is a plugin for Hex-Ray's IDA Pro disassembler designed to enhance IDA's capabilities as an exploit development and vulnerab…☆178Updated 5 years ago
- ☆112Updated 11 years ago
- HexRays ctree visualization plugin☆368Updated 2 weeks ago
- IDA Pro script to add some useful runtime info to static analysis☆521Updated 2 years ago
- ☆241Updated 9 years ago
- Detecting execution of kernel memory where is not backed by any image file☆252Updated 6 years ago