dmaivel / ntoseyeLinks
Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
☆81Updated last week
Alternatives and similar repositories for ntoseye
Users that are interested in ntoseye are comparing it to the libraries listed below
Sorting:
- bypassing intel txt's tboot integrity checks via coreboot shim☆67Updated 2 months ago
- C++ macro for x64 programs that breaks ida hex-rays decompiler tool.☆116Updated last year
- Generate a PDB file given the old PDB file and an address mapping☆48Updated 2 months ago
- A large collection of 32bit and 64bit PE files useful for verifying the correctness of bin2bin transformations☆54Updated 10 months ago
- Hyper-V related resources☆31Updated last year
- Report and exploit of CVE-2023-36427☆90Updated last year
- All LLVM binaries scrambled with SigBreaker and used to test against llvm-lit☆16Updated 3 weeks ago
- x86-64 user mode emulation using Zydis☆46Updated 4 months ago
- Python bindings for the Icicle emulator.☆35Updated last month
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆117Updated 2 weeks ago
- Report and exploit of CVE-2024-21305.☆34Updated last year
- A set of LLVM and GCC based plugins that perform code obfuscation.☆123Updated last week
- An x64dbg plugin which helps make sense of long C++ symbols☆59Updated 2 years ago
- Me fockin' pe protector☆45Updated 2 years ago
- Binary Ninja plugin for interacting with the OALabs HashDB service☆19Updated 7 months ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆65Updated last year
- A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.☆80Updated 10 months ago
- Header-only C++ library for producing PE files.☆33Updated last year
- PEIM (UEFI) bootkit targeting OVMF (EDK2)☆35Updated last year
- Lightweight PDB symbol parser and resolver☆24Updated 7 months ago
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆142Updated 9 months ago
- Rust library for lifting raw binary data to LLVM IR☆51Updated last month
- Research-focused hypervisor offering advanced tools for debugging, virtual machine introspection, and automation.☆20Updated 3 weeks ago
- A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.☆93Updated 7 months ago
- Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures☆34Updated 8 months ago
- Different tools for Microsoft Hyper-V researching☆57Updated 11 months ago
- Binary Ninja plugin to analyze and simplify obfuscated code☆56Updated last week
- Abusing exceptions for code execution.☆111Updated 2 years ago
- An x86-64 code virtualizer for VM based obfuscation☆120Updated 5 months ago
- ☆19Updated 3 months ago