RceNinja / Re-Scripts
☆33Updated 3 years ago
Alternatives and similar repositories for Re-Scripts:
Users that are interested in Re-Scripts are comparing it to the libraries listed below
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆29Updated 8 years ago
- x86 bootloader emulation with Miasm (case of NotPetya)☆41Updated 5 years ago
- ☆33Updated 2 years ago
- IDA script for vmprotect Windows Api address decoder☆51Updated 3 years ago
- My conference presentations and publications☆26Updated 3 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆67Updated 5 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆73Updated 5 years ago
- A windbg extension, extracting token related contents☆41Updated 4 years ago
- ☆28Updated 4 years ago
- ☆45Updated 4 years ago
- Allows IDA PRO to disassemble x86-64 code (WOW64) in 32-bit database☆25Updated 3 years ago
- IDA plugin to explore and browse tags☆54Updated 5 years ago
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆56Updated 4 years ago
- IDA plugin CMake build-script☆34Updated 6 months ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆40Updated 5 years ago
- Windbg2ida lets you dump each step in Windbg then shows these steps in IDA☆75Updated 9 months ago
- Windbg extension that allows you analyze Control Flow Guard map☆34Updated 3 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆34Updated 6 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆58Updated 8 years ago
- Create and use macros in IDA's CLIs☆64Updated last year
- Analysis of VBS exploit CVE-2018-8174☆31Updated 6 years ago
- A little WinDbg extension to help dump the state of Win32k Type Isolation structures.☆38Updated 7 years ago
- Hansel - a simple but flexible search for IDA☆26Updated 5 years ago
- Public repository for HEVD exploits☆20Updated 6 years ago
- ☆33Updated 7 years ago
- clone of armadillo patched for windows☆47Updated 6 months ago
- Import DynamoRIO drcov code coverage data into Ghidra☆43Updated last year
- A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.☆32Updated 10 months ago
- Use WinDBG to trace the Windows API calls of any Portable Executable file☆31Updated 8 years ago
- PoC for CVE-2017-0075☆37Updated 5 years ago