VertexToEdge / WindowFunctionTracerLinks
Window Executable file Function tracer using Debugging API
☆44Updated 5 years ago
Alternatives and similar repositories for WindowFunctionTracer
Users that are interested in WindowFunctionTracer are comparing it to the libraries listed below
Sorting:
- Use WinDBG to trace the Windows API calls of any Portable Executable file☆31Updated 8 years ago
- An API Monitor based on Instrumentation☆43Updated 7 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆29Updated 8 years ago
- Windbg extension that allows you analyze Control Flow Guard map☆36Updated 3 years ago
- Helper utility for debugging windows PE/PE+ loader.☆52Updated 10 years ago
- ☆16Updated 5 years ago
- Windows build files for the VMHunt Intel PIN Trace tool☆19Updated 6 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆36Updated last year
- User-mode hook bypassing method☆33Updated 8 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22Updated 8 years ago
- drvtriks kernel driver for Windows 7 SP1 and 8.1 x64, that tricks around in your system.☆33Updated 7 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆34Updated 7 years ago
- it can extract functions from .dll, .exe, .sys and it be work! :)☆38Updated 6 years ago
- DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10☆53Updated last year
- AllMemPro☆45Updated 7 years ago
- Kernel-mode file scanner☆18Updated 7 years ago
- Wow64 syscall hook☆41Updated 8 years ago
- ☆14Updated 8 years ago
- This is a simple driver with x64 inline assembly☆57Updated 5 years ago
- penter hook example and driver time recorder☆31Updated 7 years ago
- Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.☆24Updated 7 years ago
- ☆33Updated 7 years ago
- viewing page boundaries of pages with PAGE_NOACCESS protection reveals the presence of x64dbg.☆23Updated 8 years ago
- ☆19Updated 6 years ago
- unicorn emulator for x64dbg☆34Updated 7 years ago
- Shareds for kernel developement☆28Updated 11 years ago
- Allows you to add breakpoints from IDA (from the graph/text view) to WinDbg easily☆14Updated 6 years ago
- Malwarebytes Antivirus CVE☆8Updated 7 years ago
- ☆33Updated 4 years ago
- Static analysis tools for x86 assembly☆13Updated 8 years ago