Various IDA scripts I've created for Reverse engineering.
☆96Oct 29, 2024Updated last year
Alternatives and similar repositories for ida-scripts
Users that are interested in ida-scripts are comparing it to the libraries listed below
Sorting:
- Bypassing EasyAntiCheat.sys self-integrity by abusing call hierarchy☆83Oct 6, 2022Updated 3 years ago
- Attempts to decrypt JM Xorstr in some x64 binaries☆59Mar 9, 2023Updated 2 years ago
- Port of IDA plugin SigMaker-x64 to IDAPython☆35Jan 24, 2026Updated last month
- IDA Pro plugin to make bitfield accesses easier to grep☆255Aug 3, 2025Updated 7 months ago
- undetected eac mapper☆170May 3, 2022Updated 3 years ago
- ULTRA FAST Signature Scanner & Generator for IDA Pro 7/8/9+ Compiled with GCC☆365Oct 16, 2024Updated last year
- web based GUI app to find offsets in various games.☆48Mar 6, 2023Updated 2 years ago
- Enhanced IDA Pro signature generator plugin.☆462Oct 22, 2025Updated 4 months ago
- Reverse Engineering a signed kernel driver packed and virtualized with VMProtect 3.6☆105Apr 28, 2023Updated 2 years ago
- ☆423Jan 1, 2025Updated last year
- Signature maker plugin for IDA 9.x and 8.x☆438Sep 16, 2025Updated 5 months ago
- mash hypervisor host pml4☆17Jun 22, 2022Updated 3 years ago
- it's a driver injector or driver loader header lib(Windows)☆12Aug 5, 2023Updated 2 years ago
- ☆18Dec 3, 2025Updated 3 months ago
- A debugger backend for IDA Pro built on top of of Intel’s PIN framework☆35Feb 17, 2024Updated 2 years ago
- Simple handler for bypass battleye in 5 seconds☆11May 23, 2021Updated 4 years ago
- My research WIP bluepill hypervisor☆40Mar 15, 2023Updated 2 years ago
- Analyze patches in a process☆259Jul 28, 2021Updated 4 years ago
- Asynchronous loader network written in C++20☆50Aug 25, 2022Updated 3 years ago
- ☆15Jan 3, 2024Updated 2 years ago
- function identification signatures☆12Apr 26, 2021Updated 4 years ago
- ☆224May 10, 2022Updated 3 years ago
- ☆223Mar 11, 2023Updated 2 years ago
- BattlEye kernel module bypass☆178Oct 1, 2022Updated 3 years ago
- Use ntdll/ntoskrnl to implement Kernel32, Advapi32 and other APIs. It includes user-mode and kernel-mode.☆96Aug 26, 2025Updated 6 months ago
- base for testing☆186Sep 28, 2024Updated last year
- 09/2021 reversal of EasyAntiCheat driver☆235Dec 21, 2021Updated 4 years ago
- WinDbg-Samples ExdiGdbSrv fork 修复了一部分Vmware调试的问题☆32Jul 10, 2023Updated 2 years ago
- A simple way to spoof return addresses using an exception handler☆43Aug 3, 2022Updated 3 years ago
- Some psuedo snippets from BattlEye's BEDaisy.sys loaded on Rainbow Six: Siege.☆132Apr 23, 2022Updated 3 years ago
- driver manual mapper powered by https://github.com/estimated1337/lenovo_exec☆115Dec 28, 2022Updated 3 years ago
- A general solution to simulate execution of virtualized instructions (vmprotect/themida, etc.).☆77Feb 9, 2022Updated 4 years ago
- An IDA pro plugin to display user-added comments in disassembly and pseudocode views.☆89Jun 30, 2023Updated 2 years ago
- IDA Plugin that fills in missing indirect CALL & JMP target information☆144Feb 15, 2026Updated 2 weeks ago
- Patches DSE by swapping both data ptrs located in SeValidateImageHeader && SeValidateImageData☆22Feb 9, 2024Updated 2 years ago
- Hooking the Virtual Method Table using VMT shadow hooking☆27Oct 2, 2020Updated 5 years ago
- ☆24Apr 12, 2022Updated 3 years ago
- Basic utilities for executing, reading and writing 64-bit data in a 32-bit WoW64 process☆19Jul 8, 2022Updated 3 years ago
- 对Windbg以Exdi模式下调试windows做一些修复☆21Aug 25, 2023Updated 2 years ago