An example of how to use Microsoft Windows Warbird technology
☆96Apr 23, 2023Updated 2 years ago
Alternatives and similar repositories for WarbirdExamples
Users that are interested in WarbirdExamples are comparing it to the libraries listed below
Sorting:
- A way to detect DBI frameworks, Debuggers and VMs.☆24Nov 17, 2020Updated 5 years ago
- Reverse engineered API for Microsoft's Time Travel Debugger☆36Apr 18, 2024Updated last year
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated 11 months ago
- ☆58Feb 19, 2026Updated last week
- Virtual Tagger Plugin is a Cutter plugin that significantly improves handling and analysis of vtables and virtual functions☆16Mar 23, 2023Updated 2 years ago
- ☆13Sep 25, 2023Updated 2 years ago
- Hook all callbacks which are registered with LdrRegisterDllNotification☆96Apr 3, 2025Updated 10 months ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆268Aug 31, 2022Updated 3 years ago
- Support Windows OS Reversing by searching easily for references to functions across many DLLs☆36Jan 12, 2022Updated 4 years ago
- Collection of scripts and CMake files to easily link to LLVM into your project (Windows, Linux, macOS).☆43Apr 2, 2025Updated 10 months ago
- ☆21Jan 15, 2025Updated last year
- Admin to Kernel code execution using the KSecDD driver☆265Apr 19, 2024Updated last year
- Enable SEH support for manual mapped x86-32bit PEs☆69Mar 18, 2019Updated 6 years ago
- rpv-web is a browser based frontend for the rpv library☆27Nov 21, 2025Updated 3 months ago
- Clone running process with ZwCreateProcess☆59Nov 8, 2020Updated 5 years ago
- Allows you to parse all messages sent to DbgPrint without any process interaction.☆32Apr 8, 2020Updated 5 years ago
- Reimplementation of Microsoft's Warbird obuscator☆203Jun 24, 2024Updated last year
- Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in …☆54Dec 30, 2025Updated last month
- ☆31Jan 12, 2022Updated 4 years ago
- A framework for lifting ARM32 to LLVM-IR and merging resulting code with LLVM-IR generated from source-code.☆12Oct 20, 2022Updated 3 years ago
- break link between dll and it file on disk☆12Sep 2, 2024Updated last year
- Test data for x86 instructions☆13Apr 13, 2021Updated 4 years ago
- ☆10Oct 1, 2024Updated last year
- Multiplayer snake game written at a single weekend☆13Jul 10, 2019Updated 6 years ago
- A Just-In-Time Decrypter for Windows executables (x86 and x64) that performs real-time, instruction-level decryption of encrypted code se…☆50Nov 3, 2025Updated 3 months ago
- A WinDbg extension to trace COM interactions☆131Aug 14, 2025Updated 6 months ago
- Disks for DMA☆141Apr 28, 2021Updated 4 years ago
- The updated PE file manipulation library from RetDec project.☆21Nov 24, 2023Updated 2 years ago
- devirtualization vmprotect☆65Mar 11, 2023Updated 2 years ago
- Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.☆242Sep 26, 2023Updated 2 years ago
- An Open Source Pun database.☆11Apr 27, 2021Updated 4 years ago
- My improved version of Vuzzer64☆10Jan 31, 2022Updated 4 years ago
- A Pawn p-code interpreter written in C++☆24Oct 13, 2022Updated 3 years ago
- Lightweight WINAPI tracing with Pin☆27Aug 22, 2019Updated 6 years ago
- Type 2 Hypervisor for security research supported by AMD-V hardware assisted virtualization☆41Jan 9, 2023Updated 3 years ago
- ☆22Mar 14, 2024Updated last year
- miscellaneous codes☆36Sep 24, 2023Updated 2 years ago
- ☆274Jan 14, 2023Updated 3 years ago
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆61Oct 19, 2024Updated last year