Alternatives and similar repositories for winSRDF:

Users that are interested in winSRDF are comparing it to the libraries listed below

• angelkillah / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆87Updated 8 years ago
• mandiant / flare-dbg
  flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.
  ☆150Updated 7 years ago
• rwfpl / rewolf-gogogadget
  kernel exploitation helper class
  ☆76Updated 8 years ago
• mandiant / unicorn-libemu-shim
  libemu shim layer and win32 environment for Unicorn Engine
  ☆71Updated 7 years ago
• tandasat / WinIoCtlDecoder
  IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.
  ☆107Updated last year
• MalwareTech / FstHook
  A library for intercepting native functions by hooking KiFastSystemCall
  ☆72Updated 4 years ago
• tyranid / IE11SandboxEscapes
  Some example source code for fixed IE11 sandbox escapes.
  ☆139Updated 10 years ago
• nyx0 / KINS
  KINS Banking Trojan
  ☆62Updated 9 years ago
• tandasat / findpg
  Windbg extension to find PatchGuard pages
  ☆118Updated 10 years ago
• HexHive / malWASH
  ☆113Updated 8 years ago
• evil-e / sdb-explorer
  Tool to view and create Microsoft shim database files (SDB).
  ☆112Updated 7 years ago
• Fare9 / ANBU
  ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.
  ☆89Updated 5 years ago
• K2 / EhTrace
  ATrace is a tool for tracing execution of binaries on Windows.
  ☆236Updated 8 years ago
• adamkramer / jmp2it
  Transfer EIP control to shellcode during malware analysis investigation
  ☆74Updated 10 years ago
• malwaremusings / unpacker
  Automated malware unpacker
  ☆119Updated 8 years ago
• corelan / win10_heap
  Collection of VC++ example applications to demonstrate Win10 userland heap behavior (BEA & FEA)
  ☆84Updated 8 years ago
• sam-b / windbg-plugins
  Any useful windbg plugins I've written.
  ☆116Updated 6 years ago
• CyberPoint / Ruxcon2016ETW
  Ruxcon2016 POC Code
  ☆137Updated 8 years ago
• Cn33liz / HSEVD-StackOverflowX64
  HackSys Extreme Vulnerable Driver - Windows 10 x64 StackOverflow Exploit with SMEP Bypass
  ☆61Updated 7 years ago
• BreakingMalware / Selfie
  A Tool to Unpack Self-Modifying Code using DynamoRIO
  ☆141Updated 7 years ago
• KasperskyLab / VBscriptInternals
  Scripts for disassembling VBScript p-code in the memory to aid in exploits analysis
  ☆84Updated 2 years ago
• maldevel / driver-loader
  Load a Windows Kernel Driver
  ☆91Updated 7 years ago
• atlantis2013 / Evasion-Tools
  Anti-technique Codes, Detection of Anti-technique codes
  ☆38Updated 11 years ago
• cbayet / PoolSprayer
  Simple library to spray the Windows Kernel Pool
  ☆107Updated 5 years ago
• Rootkitsmm-zz / Win32k-Fuzzer
  Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )
  ☆132Updated 9 years ago
• zynamics / msdn-plugin-ida
  Imports MSDN documentation into IDA Pro
  ☆51Updated 13 years ago
• DavidKorczynski / RePEconstruct
  ☆91Updated 8 years ago
• nccgroup / DIBF
  Windows NT ioctl bruteforcer and modular fuzzer
  ☆121Updated 6 years ago
• NorthBit / bulletin-scraper
  Download all of Microsoft's security updates and symbols
  ☆42Updated 8 years ago
• OALabs / frida-wshook
  Script analysis tool based on Frida.re
  ☆129Updated 7 years ago