Signal-Labs / FileHookLinks
☆30Updated 5 years ago
Alternatives and similar repositories for FileHook
Users that are interested in FileHook are comparing it to the libraries listed below
Sorting:
- ☆41Updated 4 years ago
- dk is a WinDbg extenion for dumping memory data in meaningful and organized ways, it is an enhancement of my previous tokenext project.☆24Updated 2 years ago
- ☆49Updated 5 years ago
- ☆11Updated 3 years ago
- Python bindings for BochsCPU☆37Updated 2 months ago
- Command like tool to print mitigation flags for running processes in a memory dump☆47Updated 5 years ago
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆73Updated 2 years ago
- Helper idapython code for reversing kmdf drivers☆75Updated 3 years ago
- Different tools for Microsoft Hyper-V researching☆61Updated 3 months ago
- ☆15Updated 2 years ago
- A collection of tools, source code, and papers researching Windows' implementation of CET.☆85Updated 5 years ago
- This utility allows you to lock every available memory regions of an arbitrary process into its working set.☆69Updated 2 years ago
- poc code for CVE-2024-38080☆29Updated last year
- Overview of Microsoft Patch Tuesday☆14Updated last year
- x86 and x64 assembly "read-eval-print loop" for Windows☆31Updated 8 years ago
- ☆31Updated 3 years ago
- Windbg extension that allows you analyze Control Flow Guard map☆36Updated 4 years ago
- Slides from various conference talks☆37Updated 2 years ago
- Extract data of TTD trace file to a minidump☆30Updated 2 years ago
- Breaking Secure Boot with SMM☆41Updated 3 years ago
- ☆32Updated 2 years ago
- Binary Ninja plugin to perform automated analysis of Windows drivers☆18Updated 6 years ago
- A driver to implement IOCTL hooking☆24Updated 3 years ago
- Support Windows OS Reversing by searching easily for references to functions across many DLLs☆32Updated 3 years ago
- ☆24Updated 4 years ago
- A simple but useful project maybe help you reverse Windows.☆40Updated last year
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆99Updated 5 years ago
- A fast execution trace symbolizer for Windows.☆129Updated last year
- ☆13Updated 2 years ago
- Tool for PDB generation from IDA Pro database☆12Updated 5 years ago