PhrozenIO / PsyloDbg
User-friendly Microsoft Windows Debugger for Malware Analysts.
☆193Updated 2 years ago
Alternatives and similar repositories for PsyloDbg:
Users that are interested in PsyloDbg are comparing it to the libraries listed below
- Microsoft Windows DLL Export Browser (Enumerate Exports, COM Methods and Properties) with Advanced Search Features.☆197Updated 8 months ago
- masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)☆118Updated last year
- Advanced driver monitoring utility.☆203Updated 2 years ago
- Bootkit for Windows Sandbox to disable DSE/PatchGuard.☆269Updated 4 months ago
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…☆154Updated this week
- Recon 2023 slides and code☆79Updated last year
- Comparing, discussing, and bypassing various techniques for suspending and freezing processes on Windows.☆117Updated 3 years ago
- Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows☆203Updated 2 years ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆243Updated 2 years ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆115Updated last year
- Advanced static analysis tool☆88Updated this week
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆115Updated 7 months ago
- ☆111Updated this week
- My notes while studying Windows exploitation☆185Updated last year
- ☆61Updated last year
- Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …☆108Updated 3 years ago
- A dynamic unpacking tool☆132Updated last year
- A small x64 library to load dll's into memory.☆429Updated last year
- A ProcessMonitor visualization application written in rust.☆178Updated last year
- Generate a proxy dll for arbitrary dll☆164Updated 4 months ago
- Small tool to convert beteween the PE alignments (raw and virtual).☆85Updated 2 years ago
- An automatic unpacker and logger for DotNet Framework targeting files☆251Updated last year
- Web-based tool that allows comparing symbol, type and syscall information of Microsoft Windows binaries across different versions of the …☆331Updated last week
- Patching "signtool.exe" to accept expired certificates for code-signing.☆273Updated 7 months ago
- Evasion Escaper is a project aimed at evading the checks that malicious software performs to detect if it's running in a virtual environm…☆105Updated 2 weeks ago
- Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.☆180Updated 3 years ago
- Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.☆229Updated last year
- a PE Loader and Windows API tracer. Useful in malware analysis.☆138Updated 2 years ago
- MalUnpack companion driver☆93Updated 8 months ago
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆160Updated last week