Signal-Labs / FileHookLinks
☆30Updated 4 years ago
Alternatives and similar repositories for FileHook
Users that are interested in FileHook are comparing it to the libraries listed below
Sorting:
- ☆40Updated 4 years ago
- ☆11Updated 2 years ago
- dk is a WinDbg extenion for dumping memory data in meaningful and organized ways, it is an enhancement of my previous tokenext project.☆24Updated 2 years ago
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆99Updated 5 years ago
- ☆47Updated 5 years ago
- Helper idapython code for reversing kmdf drivers☆74Updated 3 years ago
- This utility allows you to lock every available memory regions of an arbitrary process into its working set.☆68Updated 2 years ago
- poc code for CVE-2024-38080☆30Updated 11 months ago
- A simple but useful project maybe help you reverse Windows.☆38Updated last year
- javascript extension of windbg for hacker.☆15Updated 2 years ago
- Different tools for Microsoft Hyper-V researching☆60Updated last month
- Helper script for Windows kernel debugging with IDA Pro on native Bochs debugger (including PDB symbols)☆62Updated 2 years ago
- Python bindings for BochsCPU☆37Updated last week
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆73Updated 2 years ago
- Breaking Secure Boot with SMM☆41Updated 3 years ago
- A static analysis tool that helps security researchers scan a list of Windows kernel drivers for common vulnerability patterns in drivers…☆69Updated 3 years ago
- Overview of Microsoft Patch Tuesday☆14Updated 11 months ago
- Slides from various conference talks☆37Updated 2 years ago
- CVE-2021-36955☆14Updated 2 years ago
- ☆33Updated 2 years ago
- Tool for PDB generation from IDA Pro database☆12Updated 5 years ago
- ☆12Updated 5 years ago
- Binary Ninja plugin to perform automated analysis of Windows drivers☆17Updated 6 years ago
- ☆27Updated last year
- A collection of my scripts for research☆12Updated 3 weeks ago
- Command like tool to print mitigation flags for running processes in a memory dump☆47Updated 4 years ago
- VMX intrinsics plugin for Hex-Rays decompiler☆71Updated 5 years ago
- A fast execution trace symbolizer for Windows.☆131Updated last year
- ☆82Updated 2 years ago
- A collection of tools, source code, and papers researching Windows' implementation of CET.☆85Updated 4 years ago