ergrelet / windiffLinks
Web-based tool that allows comparing symbol, type and syscall information of Microsoft Windows binaries across different versions of the OS.
☆350Updated last week
Alternatives and similar repositories for windiff
Users that are interested in windiff are comparing it to the libraries listed below
Sorting:
- A DTrace on Windows Reimplementation☆361Updated 3 weeks ago
- msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.☆153Updated last year
- Operating System Design Review: A systematic analysis of modern systems architecture☆328Updated 8 months ago
- ROPfuscator is a fine-grained code obfuscation framework for C/C++ programs using ROP (return-oriented programming).☆432Updated last year
- x86 malware emulator☆234Updated 3 weeks ago
- A tool that is used to hunt vulnerabilities in x64 WDM drivers☆403Updated 3 weeks ago
- Useful scripts for WinDbg using the debugger data model☆420Updated last year
- Static Binary Instrumentation tool for Windows x64 executables☆207Updated 3 weeks ago
- SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also conta…☆466Updated 4 months ago
- Rust symbol recovery tool☆72Updated 3 months ago
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆125Updated last week
- A simple ptrace-less shared library injector for x64 Linux☆275Updated 2 years ago
- Advanced driver monitoring utility.☆217Updated 3 years ago
- ☆154Updated 2 months ago
- masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)☆126Updated 2 years ago
- Vulnerable driver research tool, result and exploit PoCs☆219Updated last year
- ☆207Updated 2 years ago
- A Cross-Platform C++ parser library for Windows user minidumps with Python 3 bindings.☆219Updated 3 weeks ago
- A C++ tool to unstrip Rust/Go binaries (ELF and PE)☆395Updated 9 months ago
- FLARE Team's Binary Navigator☆288Updated last week
- A command line Windows API tracing tool for Golang binaries.☆157Updated last year
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆236Updated 3 years ago
- Cross-platform tool that allows browsing and extracting C and C++ type declarations from PDB files.☆340Updated 8 months ago
- baton drop (CVE-2022-21894): Secure Boot Security Feature Bypass Vulnerability☆345Updated 2 years ago
- The Windbg extensions to study Hyper-V on Intel and AMD processors.☆167Updated last month
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆156Updated last year
- Idiomatic Rust bindings for the IDA SDK, enabling the development of standalone analysis tools using IDA v9.x’s idalib☆217Updated last month
- Single header version of System Informer's phnt library.☆230Updated this week
- Bootkit for Windows Sandbox to disable DSE/PatchGuard.☆305Updated last year
- Exploring RPC interfaces on Windows☆332Updated last year