Alternatives and similar repositories for windbg-kernel-debug-cheat-sheet:

Users that are interested in windbg-kernel-debug-cheat-sheet are comparing it to the libraries listed below

• jk45054 / CTF-writeups
  Writeups for CTF challenges
  ☆30Updated last year
• VoidSec / ioctlpus
  IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).
  ☆89Updated 3 years ago
• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆133Updated 7 months ago
• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆151Updated last year
• hugsy / recon_2024_windbg_workshop
  ☆73Updated 9 months ago
• hasherezade / pe_unmapper
  Small tool to convert beteween the PE alignments (raw and virtual).
  ☆86Updated 2 years ago
• waleedassar / SimpleNTSyscallFuzzer
  ☆145Updated last year
• carlos-al / user-kernel-syscall-hook
  ☆82Updated 10 months ago
• tandasat / hvext
  The Windbg extensions to study Hyper-V on Intel and AMD processors.
  ☆152Updated 3 weeks ago
• zeze-zeze / ioctlance
  A tool that is used to hunt vulnerabilities in x64 WDM drivers
  ☆191Updated last week
• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆198Updated last month
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆81Updated 4 years ago
• ucsb-seclab / popkorn-artifact
  ☆67Updated 2 years ago
• yardenshafir / IoRingReadWritePrimitive
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆225Updated 2 years ago
• 0vercl0k / snapshot
  WinDbg extension written in Rust to dump the CPU / memory state of a running VM
  ☆116Updated 4 months ago
• waleedassar / RestrictedKernelLeaks
  ☆158Updated 3 years ago
• Signal-Labs / IOCTLDump
  ☆142Updated last year
• N0fix / rust-std-sigs
  ☆13Updated 8 months ago
• LLVMParty / RemillWorkshop
  ☆47Updated last month
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆114Updated 8 months ago
• splishy-splash / RE-scripts
  a small curation of created/stolen scripts for reverse engineering
  ☆12Updated 11 months ago
• connormcgarr / EATGuard
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆98Updated last year
• 0vercl0k / symbolizer-rs
  A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.
  ☆91Updated 5 months ago
• DriverHunter / Win-Driver-EXP
  This repo contains EXPs about Vulnerable Windows Driver
  ☆37Updated 10 months ago
• idiom / stackstack
  ☆31Updated 2 years ago
• hasherezade / mal_unpack_drv
  MalUnpack companion driver
  ☆95Updated 9 months ago
• N0fix / rustbininfo
  Get information about stripped rust executables
  ☆27Updated last week
• ionescu007 / clfs-docs
  Unofficial Common Log File System (CLFS) Documentation
  ☆174Updated 3 years ago
• N0fix / rustbinsign
  Rust symbol recovery tool
  ☆45Updated last week
• gabriellandau / ShadowStackWalk
  Finding Truth in the Shadows
  ☆89Updated 2 years ago