ergrelet / resym

Related projects: ⓘ

• JustasMasiulis / ida_bitfields
  IDA Pro plugin to make bitfield accesses easier to grep
  ☆221Updated 5 months ago
• can1357 / NtRays
  Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
  ☆506Updated 3 weeks ago
• RicBent / Classy
  IDA Pro plugin to manage classes
  ☆271Updated last week
• gaasedelen / microavx
  An AVX Lifter for the Hex-Rays Decompiler
  ☆284Updated last year
• can1357 / HexSuite
  Header only wrapper around Hex-Rays API in C++20.
  ☆147Updated 2 years ago
• mandiant / STrace
  A DTrace on Windows Reimplementation
  ☆317Updated last month
• dbgsymbol / getsymbol
  ☆186Updated this week
• 0vercl0k / udmp-parser
  A Cross-Platform C++ parser library for Windows user minidumps with Python 3 bindings.
  ☆193Updated 6 months ago
• airbus-cert / comida
  An IDA Plugin that help analyzing module that use COM
  ☆198Updated last year
• can1357 / linux-pe
  COFF and Portable Executable format described using standard C++ with no dependencies.
  ☆251Updated 5 months ago
• notpidgey / EagleVM
  Native code virtualizer for x64 binaries
  ☆355Updated this week
• 0xcpu / ExecutiveCallbackObjects
  Research on Windows Kernel Executive Callback Objects
  ☆277Updated 4 years ago
• oopsmishap / HexRaysPyTools
  IDA Pro plugin which improves work with HexRays decompiler and helps in process of reconstruction structures and classes
  ☆114Updated last year
• 0vercl0k / kdmp-parser
  A Windows kernel dump C++ parser library with Python 3 bindings.
  ☆193Updated 2 months ago
• hfiref0x / WubbabooMark
  Debugger Anti-Detection Benchmark
  ☆283Updated 9 months ago
• ergrelet / themida-unmutate
  Static deobfuscator for Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.
  ☆202Updated last month
• airbus-cert / ttddbg
  Time Travel Debugging IDA plugin
  ☆551Updated 2 months ago
• mrexodia / AppInitHook
  Global user-mode hooking framework, based on AppInit_DLLs. The goal is to allow you to rapidly develop hooks to inject in an arbitrary pr…
  ☆156Updated 2 years ago
• tandasat / SimpleSvmHook
  SimpleSvmHook is a research purpose hypervisor for Windows on AMD processors.
  ☆345Updated 3 years ago
• 0xnobody / vmpattack
  A VMP to VTIL lifter.
  ☆419Updated 3 years ago
• VoidSec / DriverBuddyReloaded
  Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks
  ☆315Updated last year
• thalium / symless
  ☆177Updated 11 months ago
• medigateio / ida_medigate
  Medigate plugin for c++ reverse engineering and other utils
  ☆264Updated last year
• avakar / vcrtl
  C++ Exceptions in Windows Drivers
  ☆195Updated 3 years ago
• zyantific / zasm
  x86-64 Assembler based on Zydis
  ☆301Updated 2 weeks ago
• jxy-s / stlkrn
  C++ STL in the Windows Kernel with C++ Exception Support
  ☆384Updated last year
• momo5502 / hypervisor
  Hypervisor with EPT hooking support.
  ☆179Updated last week
• vovkos / protolesshooks
  API monitoring via return-hijacking thunks; works without information about target function prototypes.
  ☆112Updated 4 years ago
• VergiliusProject / vergilius-project
  This project provides a collection of Microsoft Windows kernel structures, unions and enumerations. Most of them are not officially docum…
  ☆159Updated 3 months ago
• JustasMasiulis / wow64pp
  A modern c++ implementation of windows heavens gate
  ☆193Updated 4 years ago