BehroozAbbassi / sdkffi

Related projects ⓘ

Alternatives and complementary repositories for sdkffi

• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆74Updated 4 years ago
• nlykkei / llvm-ir-obfuscation
  Collection of obfuscation, tamper-proofing, and watermarking algorithms targeting LLVM IR.
  ☆71Updated 4 years ago
• kkent030315 / NtSymbol
  Resolve DOS MZ executable symbols at runtime
  ☆93Updated 2 years ago
• hasherezade / pin_n_sieve
  An experimental dynamic malware unpacker based on Intel Pin and PE-sieve
  ☆57Updated 2 months ago
• redplait / armpatched
  clone of armadillo patched for windows
  ☆46Updated 2 weeks ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆69Updated last year
• tandasat / hvext
  The Windbg extension that implements commands helpful to study Hyper-V on Intel processors.
  ☆129Updated 3 weeks ago
• Signal-Labs / IOCTLDump
  ☆131Updated last year
• SinaKarvandi / x64-Driver-Inline-Assembly
  This is a simple driver with x64 inline assembly
  ☆52Updated 4 years ago
• D4stiny / ExceptionOrientedProgramming
  Abusing exceptions for code execution.
  ☆106Updated last year
• ioncodes / kdbg-driver-vagrant
  ☆43Updated 2 years ago
• can1357 / HexSuite
  Header only wrapper around Hex-Rays API in C++20.
  ☆151Updated 2 years ago
• ergrelet / triton-bn
  Binary Ninja plugin that can be used to apply Triton's dead store eliminitation pass on basic blocks or functions.
  ☆58Updated 3 months ago
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆60Updated last year
• LLVMParty / UnsupportedInstructionsLiftingToLLVM
  Using Zydis and LLVM to lift unsupported instructions to LLVM-IR
  ☆27Updated 3 years ago
• yardenshafir / InformationClasses
  Documenting system information classes and their uses
  ☆50Updated 3 years ago
• shareef12 / libpdb
  Parser for Microsoft Program Database (PDB) files
  ☆74Updated 4 years ago
• p0dalirius / pdbdownload
  A Python script to download PDB files associated with a Portable Executable (PE)
  ☆115Updated 3 months ago
• VoidSec / ioctlpus
  IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).
  ☆84Updated 2 years ago
• yardenshafir / PoolViewer
  An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.
  ☆124Updated last year
• tandasat / kraft_dinner
  Tool to dump UEFI runtime drivers implementing runtime services for Windows
  ☆90Updated 3 years ago
• m417z / x64dbg-symbol-tldr
  An x64dbg plugin which helps make sense of long C++ symbols
  ☆59Updated last year
• mazeworks-security / Simplifier
  Efficient general mixed boolean-arithmetic (MBA) simplifier
  ☆73Updated this week
• ergot86 / hyperv_stuff
  Hyper-V related resources
  ☆31Updated 7 months ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year
• bluefrostsecurity / Meltdown-KVA-Shadow-Leak
  ☆44Updated 4 years ago
• 0vercl0k / sic
  Enumerate user mode shared memory mappings on Windows.
  ☆114Updated 3 years ago
• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆114Updated 2 months ago
• Biswa96 / PDBDownloader
  Standalone program to download PDB Symbol files for debugging without WDK
  ☆73Updated 5 years ago
• sgabe / SymlinkProtect
  File system minifilter driver for Windows to block symbolic link attacks.
  ☆51Updated 3 years ago