cra0 / ida-scriptsLinks
Various IDA scripts I've created for Reverse engineering.
☆86Updated 11 months ago
Alternatives and similar repositories for ida-scripts
Users that are interested in ida-scripts are comparing it to the libraries listed below
Sorting:
- Attempts to decrypt JM Xorstr in some x64 binaries☆55Updated 2 years ago
- PE-Dump-Fixer☆111Updated 5 years ago
- Some psuedo snippets from BattlEye's BEDaisy.sys loaded on Rainbow Six: Siege.☆126Updated 3 years ago
- Known ring3 memory protections that can be handled at a simple level.☆67Updated 2 years ago
- PointerGuard is a proof-of-concept tool used to create 'guarded' pointers which disguise pointer addresses, monitor reads/writes, and pre…☆52Updated 3 years ago
- This tool Decrypt and Extract the files from the EAC☆69Updated last month
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆117Updated 3 years ago
- Simple IDA Pro plugin to download Unity debug symbols from their symbol server☆76Updated last year
- Kernel driver that uses Shared memory to communicate with UserMode☆89Updated 6 years ago
- Hide external overlay by using SetWindowDisplayAffinity☆97Updated 4 years ago
- A lightweight BattlEye emulator of the launcher☆60Updated 3 years ago
- reverse engineering of bedaisy.sys (battleyes kernel driver) - Aki2k/BEDaisy☆93Updated 5 years ago
- ☆81Updated 3 years ago
- Kernel Lazy Importer☆124Updated last year
- Its a header-only runtime tool for importing functions from modules.☆45Updated 2 years ago
- A PoC for requesting HWIDs directly from hardware, skipping any potential hooks or OS support.☆81Updated 4 years ago
- Bypassing EasyAntiCheat.sys self-integrity by abusing call hierarchy☆81Updated 3 years ago
- External Il2Cpp Framework☆63Updated 4 years ago
- Scans all modules in target process for jmp/int3 hooks dissassembles then and follows jmps to destination.☆79Updated last year
- Manual map shellcode (aka byte array) injector☆74Updated 9 months ago
- ☆145Updated last year
- A mini anti-anti debug hooking library for Windows.☆106Updated 4 years ago
- Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.☆147Updated 3 years ago
- Example driver on how to use SKLib☆58Updated 10 months ago
- ☆51Updated 5 years ago
- x64 Windows kernel driver mapper, inject unsigned driver using anycall☆175Updated last year
- ☆82Updated last year
- Archive R/W into any protected process by changing the value of KTHREAD->PreviousMode☆162Updated 3 years ago
- Drawing from kernelmode without any hooks☆171Updated 3 years ago
- ☆130Updated 3 years ago