dmaivel / ntoseyeLinks
Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
☆92Updated 2 months ago
Alternatives and similar repositories for ntoseye
Users that are interested in ntoseye are comparing it to the libraries listed below
Sorting:
- dynamic binary instrumentation, analysis, and patching framework☆93Updated this week
- The Windbg extensions to study Hyper-V on Intel and AMD processors.☆156Updated 5 months ago
- Rewrite and obfuscate code in compiled binaries☆223Updated this week
- bypassing intel txt's tboot integrity checks via coreboot shim☆80Updated 5 months ago
- Generate a PDB file given the old PDB file and an address mapping☆49Updated 2 weeks ago
- C++ macro for x64 programs that breaks ida hex-rays decompiler tool.☆128Updated last year
- Abusing exceptions for code execution.☆111Updated 2 years ago
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆149Updated last year
- An x64dbg plugin which helps make sense of long C++ symbols☆59Updated 2 years ago
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆119Updated 3 months ago
- Plugin interface for remote communications with Binary Ninja database and MCP server for interfacing with LLMs.☆41Updated 3 months ago
- A set of LLVM and GCC based plugins that perform code obfuscation.☆127Updated 2 months ago
- LLVM based obfuscation engine☆98Updated 2 months ago
- A high-performance C++ framework for emulating executable binaries☆101Updated this week
- An x86-64 code virtualizer for VM based obfuscation☆131Updated 8 months ago
- Different tools for Microsoft Hyper-V researching☆60Updated last month
- Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book☆112Updated last year
- uefi diskless persistence technique + OVMF secureboot bypass☆88Updated last year
- Windows 11 24H2 Runtime PatchGuard Bypass☆153Updated this week
- A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.☆82Updated last year
- A Windows executable (PE) packer (x64) with LZMA compression and with full TLS (Thread Local Storage) support☆75Updated 2 months ago
- Report and exploit of CVE-2024-21305.☆36Updated last year
- ☆152Updated 3 weeks ago
- compile-time control flow obfuscation using mba☆191Updated 2 years ago
- monitors hidden syscalls called from call of duty anticheat☆82Updated 7 months ago
- ☆92Updated last year
- Report and exploit of CVE-2023-36427☆90Updated last year
- Proof-of-concept game using VBS enclaves to protect itself from cheating☆43Updated 9 months ago
- A journal for $6,000 Riot Vanguard bounty.☆65Updated last year
- NovaHypervisor is a defensive x64 Intel host based hypervisor. The goal of this project is to protect against kernel based attacks (eithe…☆220Updated last month