Alternatives and similar repositories for BEAUTIFULSKY

Users that are interested in BEAUTIFULSKY are comparing it to the libraries listed below

• JKornev / cfgdump
  Windbg extension that allows you analyze Control Flow Guard map
  ☆35Updated 3 years ago
• thalium / WinDbgFastObj
  ☆21Updated 4 years ago
• Jb05s / Exploit-Dev-C
  ☆22Updated 5 years ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year
• nccgroup / ICPin
  An Integrity-Check Monitoring Pintool
  ☆58Updated 4 years ago
• hasherezade / pe_utils
  A set of small utilities, helpers for PIN tracers
  ☆32Updated last year
• airbus-cert / ttd2mdmp
  Extract data of TTD trace file to a minidump
  ☆28Updated last year
• Midi12 / QueryWorkingSetExample
  Just an example of a well-known technique to detect memory tampering via Windows Working Sets.
  ☆16Updated 3 years ago
• SinaKarvandi / Pinitor
  An API Monitor based on Instrumentation
  ☆43Updated 7 years ago
• hasherezade / beardisasm
  A wrapper for capstone for bearparser
  ☆14Updated 2 years ago
• bluefrostsecurity / Meltdown-KVA-Shadow-Leak
  ☆46Updated 5 years ago
• zwclose / veeamon
  ☆16Updated 5 years ago
• therealdreg / symseghelper
  Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode
  ☆19Updated last year
• securesean / Shim-Process-Scanner
  Windows x64 Process Scanner to detect application compatability shims
  ☆37Updated 6 years ago
• gabriellandau / CISpotter
  Code Integrity Violation Spotter
  ☆16Updated last year
• deroko / activationcontexthook
  ☆34Updated 7 years ago
• shamrockhoax / mazedecoder
  ☆28Updated 5 years ago
• TakahiroHaruyama / SpiMitm
  SPI flash read MitM attack PoC
  ☆38Updated 3 years ago
• Dump-GUY / Python3---Binary-Data-Manipulation
  Python 3 - Manipulation and conversation with different data type (Bytes operations)
  ☆26Updated 3 years ago
• yardenshafir / CallbackObjectAnalyzer
  Dumps information about all the callback objects found in a dump file and the functions registered for them
  ☆36Updated 4 years ago
• therealdreg / Win.Cerdalux
  WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs
  ☆18Updated last year
• ek0 / hxemu
  Triton based symbolic emulator
  ☆16Updated 2 years ago
• michaeljgoodman / Dumpulator-IDA
  Currently proof-of-concept
  ☆17Updated 3 years ago
• shareef12 / driveranalyzer
  Binary Ninja plugin to perform automated analysis of Windows drivers
  ☆17Updated 5 years ago
• hasherezade / pin_n_sieve
  An experimental dynamic malware unpacker based on Intel Pin and PE-sieve
  ☆60Updated 10 months ago
• NtRaiseHardError / NoREpls
  NoREpls - Application designed for the purposes of reverse engineering.
  ☆11Updated 6 years ago
• rtyuiow / vmware-backdoor
  vmware-backdoor
  ☆33Updated 4 years ago
• Fyyre / directntapi
  DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10
  ☆53Updated last year
• RceNinja / Re-Scripts
  ☆34Updated 3 years ago
• long123king / dk
  dk is a WinDbg extenion for dumping memory data in meaningful and organized ways, it is an enhancement of my previous tokenext project.
  ☆24Updated 2 years ago