SinaKarvandi / windbg2idaLinks
Windbg2ida lets you dump each step in Windbg then shows these steps in IDA
☆75Updated 10 months ago
Alternatives and similar repositories for windbg2ida
Users that are interested in windbg2ida are comparing it to the libraries listed below
Sorting:
- windbg plugin for win32k debugging☆75Updated 5 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆67Updated 5 years ago
- kernel pool windbg extension☆82Updated 9 years ago
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆57Updated 4 years ago
- A fast execution trace symbolizer for Windows.☆131Updated last year
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆59Updated 5 years ago
- Helper idapython code for reversing kmdf drivers☆72Updated 2 years ago
- ☆19Updated 3 weeks ago
- Python bindings for the Microsoft Hypervisor Platform APIs.☆80Updated 5 years ago
- ☆72Updated 3 years ago
- clone of armadillo patched for windows☆47Updated 7 months ago
- Kernel driver to fuzz Hyper-V hypercalls☆137Updated 6 years ago
- VMX intrinsics plugin for Hex-Rays decompiler☆71Updated 5 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆35Updated 10 months ago
- Elevation of privilege detector based on HyperPlatform☆122Updated 8 years ago
- ☆45Updated 4 years ago
- Hyper-V Research is trendy now☆180Updated last year
- Analyses in IDA/Hex-Rays☆83Updated 2 years ago
- VMCS Auditor provides almost all of Intel's VMCS Layout checklist based on Bochs Emulator.☆32Updated 6 years ago
- ☆34Updated 3 years ago
- ☆40Updated 3 years ago
- Simple library to spray the Windows Kernel Pool☆109Updated 5 years ago
- Toolkit for Hyper-V security research☆157Updated 3 years ago
- PoC for a taint based attack on VMProtect☆108Updated 5 years ago
- File system minifilter driver for Windows to block symbolic link attacks.☆51Updated 4 years ago
- A little WinDbg extension to help dump the state of Win32k Type Isolation structures.☆38Updated 7 years ago
- VT-based PCI device monitor (SPI)☆151Updated 4 years ago
- ☆47Updated 2 years ago
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆142Updated 6 years ago
- Windows 10 kernel and ntdll internal types, directly compatible with ida.☆50Updated 6 years ago