Alternatives and similar repositories for Misc

Users that are interested in Misc are comparing it to the libraries listed below

• SinaKarvandi / windbg2ida
  Windbg2ida lets you dump each step in Windbg then shows these steps in IDA
  ☆75Updated 11 months ago
• 0xcpu / WinAltSyscallHandler
  Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999
  ☆219Updated 5 years ago
• KelvinMsft / DeviceMon
  VT-based PCI device monitor (SPI)
  ☆151Updated 4 years ago
• pgarba / UniTaint
  PoC for a taint based attack on VMProtect
  ☆108Updated 5 years ago
• IgorKorkin / MemoryRanger
  MemoryRanger protects kernel data and code by running drivers and hosting data in isolated kernel enclaves using VT-x and EPT features. M…
  ☆228Updated 4 years ago
• dro / win10-ida-types
  Windows 10 kernel and ntdll internal types, directly compatible with ida.
  ☆51Updated 6 years ago
• 0xcpu / ExecutiveCallbackObjects
  Research on Windows Kernel Executive Callback Objects
  ☆288Updated 5 years ago
• repnz / ida-plugins
  A collection of my IDA plugins
  ☆134Updated 4 years ago
• 0vercl0k / symbolizer
  A fast execution trace symbolizer for Windows.
  ☆131Updated last year
• RolfRolles / FinSpyVM
  Static unpacker for FinSpy VM
  ☆101Updated 3 years ago
• JaanusKaapPublic / HyperViper
  Toolkit for Hyper-V security research
  ☆157Updated 3 years ago
• tandasat / EopMon
  Elevation of privilege detector based on HyperPlatform
  ☆122Updated 8 years ago
• msuiche / LiveCloudKd
  Hyper-V Research is trendy now
  ☆181Updated last year
• gerhart01 / LiveCloudKd
  Hyper-V Research is trendy now
  ☆163Updated 2 weeks ago
• FSecureLABS / ViridianFuzzer
  Kernel driver to fuzz Hyper-V hypercalls
  ☆137Updated 6 years ago
• fishstiqz / poolinfo
  kernel pool windbg extension
  ☆84Updated 9 years ago
• JeremyWildsmith / x86devirt
  A project that aims to automatically devirtualize code that has been virtualized using x86virt
  ☆126Updated 2 years ago
• tandasat / GuardMon
  Hypervisor based tool for monitoring system register accesses.
  ☆146Updated 6 years ago
• wbenny / EtwConsumerNT
  Simple project that demonstrates how an ETW consumer can be created just by using NTDLL
  ☆143Updated 6 years ago
• cbayet / PoolSprayer
  Simple library to spray the Windows Kernel Pool
  ☆109Updated 5 years ago
• 0vercl0k / kdmp-parser
  A Windows kernel dump C++ parser library with Python 3 bindings.
  ☆201Updated 11 months ago
• progmboy / win32kext
  windbg plugin for win32k debugging
  ☆75Updated 5 years ago
• synacktiv / Windows-kernel-SegmentHeap-Aligned-Chunk-Confusion
  PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap
  ☆208Updated 4 years ago
• tandasat / WinIoCtlDecoder
  IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.
  ☆111Updated last year
• mrphrazer / hitb2021ams_deobfuscation
  ☆72Updated 3 years ago
• thalium / idatag
  IDA plugin to explore and browse tags
  ☆56Updated 5 years ago
• tandasat / findpg
  Windbg extension to find PatchGuard pages
  ☆121Updated 10 years ago
• AndreyBazhan / SymStore
  The history of Windows Internals via symbols.
  ☆178Updated 3 years ago
• hfiref0x / Stryker
  Multi-purpose proof-of-concept tool based on CPU-Z CVE-2017-15303
  ☆109Updated 7 years ago
• RolfRolles / IDBs
  Analyses in IDA/Hex-Rays
  ☆83Updated 2 years ago