d35ha / xLoggerLinks
Simple windows API logger
☆104Updated 5 years ago
Alternatives and similar repositories for xLogger
Users that are interested in xLogger are comparing it to the libraries listed below
Sorting:
- Resolve DOS MZ executable symbols at runtime☆95Updated 3 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆219Updated 5 years ago
- File system minifilter driver for Windows to block symbolic link attacks.☆51Updated 4 years ago
- Documenting system information classes and their uses☆51Updated 3 years ago
- API Set resolver for Windows☆135Updated 9 months ago
- An automatic tool for fixing dumped PE files☆41Updated 4 years ago
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆143Updated 10 months ago
- Small tool to convert beteween the PE alignments (raw and virtual).☆90Updated 2 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆60Updated 6 years ago
- APC Internals Research Code☆166Updated 4 years ago
- A collection of tools, source code, and papers researching Windows' implementation of CET.☆84Updated 4 years ago
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆143Updated 6 years ago
- ☆68Updated 4 years ago
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆89Updated 3 years ago
- ☆106Updated 3 years ago
- An example of a client and server using Windows' ALPC functions to send and receive data.☆96Updated 5 months ago
- Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…☆122Updated 2 years ago
- Ghetto user mode emulation of Windows kernel drivers.☆140Updated 8 months ago
- Abusing exceptions for code execution.☆111Updated 2 years ago
- ☆167Updated 8 months ago
- Set of antianalysis techniques found in malware☆132Updated last year
- ☆145Updated 2 years ago
- IDA plugin for quickly copying disassembly as encoded hex bytes☆62Updated 3 years ago
- C++ library for parsing and manipulating PE files statically and dynamically.☆88Updated last year
- An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.☆139Updated 2 years ago
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆73Updated last year
- ☆127Updated 8 months ago
- codes for my blog post: https://secrary.com/Random/InstrumentationCallback/☆177Updated 7 years ago
- JITM is an automated tool to bypass the JIT Hooking protection on a .NET sample.☆54Updated 4 years ago
- Tool to dump UEFI runtime drivers implementing runtime services for Windows☆98Updated 4 years ago