Alternatives and similar repositories for WindowsInternals:

Users that are interested in WindowsInternals are comparing it to the libraries listed below

• tandasat / hvext
  The Windbg extension that implements commands helpful to study Hyper-V on Intel processors.
  ☆135Updated 3 weeks ago
• tandasat / CVE-2023-36427
  Report and exploit of CVE-2023-36427
  ☆89Updated last year
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆79Updated last year
• 0vercl0k / snapshot
  WinDbg extension written in Rust to dump the CPU / memory state of a running VM
  ☆114Updated 2 months ago
• exploits-forsale / prefetch-tool
  Windows KASLR bypass using prefetch side-channel
  ☆75Updated 9 months ago
• m417z / x64dbg-symbol-tldr
  An x64dbg plugin which helps make sense of long C++ symbols
  ☆59Updated last year
• hugsy / recon_2024_windbg_workshop
  ☆71Updated 6 months ago
• Signal-Labs / IOCTLDump
  ☆141Updated last year
• dmaivel / ntoseye
  Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
  ☆63Updated 3 months ago
• FuzzySecurity / BulkBindex
  Winbindex bot to pull in binaries for specific releases
  ☆46Updated last year
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆79Updated 4 years ago
• huettenhain / ghidradark
  How to retro theme your Ghidra
  ☆34Updated 2 months ago
• tandasat / CVE-2024-21305
  Report and exploit of CVE-2024-21305.
  ☆36Updated last year
• 0vercl0k / symbolizer-rs
  A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.
  ☆89Updated 3 months ago
• exploits-forsale / 24h2-nt-exploit
  Exploit targeting NT kernel in 24H2 Windows Insider Preview
  ☆119Updated 9 months ago
• elastic / HexForge
  This IDA plugin extends the functionality of the assembly and hex view. With this plugin, you can conveniently decode/decrypt/alter data …
  ☆75Updated 3 weeks ago
• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆194Updated 3 months ago
• p0dalirius / pyPDBdownload
  A Python script to download PDB files associated with a Portable Executable (PE)
  ☆119Updated 6 months ago
• 20urc3 / Aplos
  Aplos an extremely simple fuzzer for Windows binaries.
  ☆68Updated 9 months ago
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆53Updated 9 months ago
• 0vercl0k / rp-bf.rs
  rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump
  ☆112Updated 8 months ago
• xalicex / kernel-debug-lab-for-virtual-box
  How to set up 2 VirtualBox VM to debug kernel driver using windbg
  ☆52Updated 2 years ago
• t0-retooling / defender-recon24
  ☆49Updated 3 months ago
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆115Updated 6 months ago
• yo-yo-yo-jbo / virtual_memory_known_dlls
  ☆18Updated last year
• D4stiny / ExceptionOrientedProgramming
  Abusing exceptions for code execution.
  ☆108Updated 2 years ago
• ioncodes / kdbg-driver-vagrant
  ☆43Updated 3 years ago
• zodiacon / VerifierDLL
  Example of building an application verifer DLL
  ☆44Updated 7 months ago
• xforcered / Windows_MSKSSRV_LPE_CVE-2023-36802
  LPE exploit for CVE-2023-36802
  ☆23Updated last year
• yardenshafir / IoRingReadWritePrimitive
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆225Updated 2 years ago