Lekensteyn / kdnet
Windows Kernel Debugger over Network (Wireshark dissector and maybe more)
☆24Updated 6 years ago
Alternatives and similar repositories for kdnet:
Users that are interested in kdnet are comparing it to the libraries listed below
- Miscellaneous old Exploit code and PoCs☆15Updated 5 months ago
- idenLib (Library Function Identification) plugin for x32dbg☆41Updated 6 years ago
- My commands and scripts extending WinDbg☆32Updated 2 weeks ago
- An API Monitor based on Instrumentation☆43Updated 7 years ago
- use crystalCPUID to identify vt-x & amd-v☆16Updated 9 years ago
- Windbg extension that allows you analyze Control Flow Guard map☆34Updated 3 years ago
- penter hook example and driver time recorder☆31Updated 7 years ago
- XDV is disassembler or debugger that works based on the extension plugin.☆54Updated 5 years ago
- Windows Offline Crash Dump☆17Updated 2 years ago
- Kernel debugger using Intel VT-x. Designed to be compatible with linux, ucore, windows.☆28Updated 11 years ago
- Dynamic binary translator for x86 binaries☆34Updated last year
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22Updated 7 years ago
- Kernel-mode file scanner☆18Updated 6 years ago
- ASProtect reverse engineering & analysis WinDbg extension☆22Updated 4 years ago
- Static analysis tools for x86 assembly☆13Updated 8 years ago
- A plugin for x64dbg for x86 emulation powered by the Unicorn-engine.☆30Updated 9 years ago
- Notes my learning steps about Windows-NT☆23Updated 7 years ago
- Windows build files for the VMHunt Intel PIN Trace tool☆19Updated 6 years ago
- A wrapper for capstone for bearparser☆13Updated 2 years ago
- The internal Windows structures hack to create the in-process private ETW session☆13Updated 8 years ago
- IDA plugin CMake build-script☆34Updated 5 months ago
- findLoop - find possible encryption/decryption or compression/decompression code☆26Updated 6 years ago
- This repository contains some tools that I have written in the past☆28Updated last year
- Use WinDBG to trace the Windows API calls of any Portable Executable file☆30Updated 7 years ago
- unicorn emulator for x64dbg☆32Updated 7 years ago
- An LLVM clone modified for use in RetDec and associated tools.☆19Updated last month
- Allows you to add breakpoints from IDA (from the graph/text view) to WinDbg easily☆14Updated 6 years ago
- Fetch PDB symbols directly from Microsoft's symbol servers☆42Updated 3 years ago
- NDC Oslo 2019 slides and demos☆32Updated 4 years ago
- x86_x64 emulator☆16Updated 9 years ago