Dump-GUY / IDA_PHNT_TYPESLinks
Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
☆142Updated 9 months ago
Alternatives and similar repositories for IDA_PHNT_TYPES
Users that are interested in IDA_PHNT_TYPES are comparing it to the libraries listed below
Sorting:
- ☆90Updated last year
- Ghetto user mode emulation of Windows kernel drivers.☆139Updated 7 months ago
- C++ macro for x64 programs that breaks ida hex-rays decompiler tool.☆116Updated last year
- Resolve DOS MZ executable symbols at runtime☆95Updated 3 years ago
- Integration of Microsoft Warbird with the MSVC compiler☆103Updated last year
- msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.☆151Updated last year
- An x86-64 code virtualizer for VM based obfuscation☆120Updated 5 months ago
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆88Updated 3 years ago
- compile-time control flow obfuscation using mba☆185Updated last year
- Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…☆121Updated 2 years ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆245Updated 2 years ago
- Small tool to convert beteween the PE alignments (raw and virtual).☆89Updated 2 years ago
- ☆139Updated 3 weeks ago
- A x86 environment emulator for Windows user and kernel binaries.☆58Updated this week
- ☆145Updated last year
- Finding Truth in the Shadows☆92Updated 2 years ago
- ☆72Updated 2 weeks ago
- ☆143Updated last year
- Single header version of System Informer's phnt library.☆221Updated last week
- Hooking Windows' exception dispatcher to protect process's PML4☆174Updated 4 months ago
- A devirtualization engine for Themida.☆100Updated last year
- APC Internals Research Code☆166Updated 4 years ago
- A tool for detecting manual/direct syscalls in x86 and x64 processes using Nirvana Hooks.☆111Updated 3 years ago
- This IDA plugin extends the functionality of the assembly and hex view. With this plugin, you can conveniently decode/decrypt/alter data …☆81Updated this week
- Walks the CFG bitmap to find previously executable but currently hidden shellcode regions☆117Updated 2 years ago
- 🎨 Seamlessly convert your favorite Visual Studio Code themes to IDA Pro themes.☆111Updated last year
- ☆75Updated 3 months ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆219Updated 5 years ago
- Rust symbol recovery tool☆49Updated 2 weeks ago
- Load dll with undocumented functions and debug symbols☆47Updated 10 months ago