behnamshamshirsaz / CrackMaster
x86/x64 Ring 0/-2 System Freezer/Debugger
☆110Updated 3 weeks ago
Related projects: ⓘ
- masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)☆114Updated last year
- This IDA plugin extends the functionality of the assembly and hex view. With this plugin, you can conveniently decode/decrypt/alter data …☆55Updated 2 weeks ago
- Repository for the code snippets from the AllThingsIDA video channel☆80Updated last month
- An x64dbg plugin which helps make sense of long C++ symbols☆58Updated last year
- How to retro theme your Ghidra☆28Updated 6 months ago
- IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformati…☆101Updated 2 weeks ago
- msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.☆148Updated 8 months ago
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆101Updated 3 weeks ago
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆105Updated 2 months ago
- A Python script to download PDB files associated with a Portable Executable (PE)☆113Updated 2 months ago
- Recon 2023 slides and code☆77Updated last year
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆110Updated last month
- Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book☆86Updated 2 months ago
- A dynamic unpacking tool☆127Updated last year
- The Frida-Jit-unPacker aims at helping researchers and analysts understand the behavior of packed malicious .NET samples.☆52Updated 5 months ago
- A journal for $6,000 Riot Vanguard bounty.☆57Updated 11 months ago
- Exploit targeting NT kernel in 24H2 Windows Insider Preview☆99Updated 4 months ago
- WinLicense key extraction via Intel PIN☆79Updated 5 months ago
- How to set up 2 VirtualBox VM to debug kernel driver using windbg☆50Updated 2 years ago
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆151Updated 2 months ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆114Updated last year
- A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.☆62Updated last month
- Advanced driver monitoring utility.☆194Updated 2 years ago
- A attempt at replicating BLACKLOTUS capabilities, whilst not acting as a direct mimic.☆81Updated last year
- x86 Real-Mode MS-DOS Emulator using Windows Hypervisor Platform☆95Updated 2 months ago
- Report and exploit of CVE-2023-36427☆86Updated 9 months ago
- This x64dbg plugin allows you to upload your sample to Malcore and view the results.☆31Updated last year
- Reimplementation of Microsoft's Warbird obuscator☆84Updated 2 months ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆229Updated 2 years ago
- Static deobfuscator for Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.☆202Updated last month