Use WinDBG to trace the Windows API calls of any Portable Executable file
☆32Apr 13, 2017Updated 8 years ago
Alternatives and similar repositories for windbg-trace
Users that are interested in windbg-trace are comparing it to the libraries listed below
Sorting:
- A simple API monitor for Windbg☆65Apr 22, 2017Updated 8 years ago
- ☆14Jun 24, 2017Updated 8 years ago
- ☆14Jan 10, 2017Updated 9 years ago
- A couple of little tools I've made for working with Windows Drivers☆15Jan 18, 2016Updated 10 years ago
- ☆11Mar 11, 2015Updated 10 years ago
- An analytical debugger programmed in C++, using Qt.☆22May 20, 2012Updated 13 years ago
- Windows PE file debugger☆11Aug 30, 2017Updated 8 years ago
- A memory engine that scans, debugs and disassembles an applications memory space.☆14Oct 29, 2017Updated 8 years ago
- Kernel debugger using Intel VT-x. Designed to be compatible with linux, ucore, windows.☆28Jun 12, 2013Updated 12 years ago
- Notes my learning steps about Windows-NT☆23May 18, 2017Updated 8 years ago
- The internal Windows structures hack to create the in-process private ETW session☆14Feb 22, 2017Updated 9 years ago
- analyze the content of the pe file on windows, and shell(pack) function for windows drivers.☆11Nov 9, 2018Updated 7 years ago
- A system call tracer☆10Sep 22, 2014Updated 11 years ago
- Task Manager Extension for Windows☆13Jul 9, 2015Updated 10 years ago
- ☆14Feb 27, 2017Updated 9 years ago
- hypervisor in windows device driver by intel vt☆14Aug 25, 2018Updated 7 years ago
- ☆10Sep 29, 2019Updated 6 years ago
- ☆13Aug 12, 2015Updated 10 years ago
- PE/PE +(64bit) Viewer (Qt 5.8)☆10Aug 3, 2018Updated 7 years ago
- Just another tool to download specify Symbol (.pdb) files☆39Sep 4, 2019Updated 6 years ago
- Crash report lib and exe for windows application☆19Dec 26, 2014Updated 11 years ago
- A sample project for using Capstone from a driver in Visual Studio 2015☆36May 4, 2016Updated 9 years ago
- Class implementation of PowerLoader injection technique☆32Dec 23, 2016Updated 9 years ago
- A library of utility classes for leveraging the Registered i/o api present in Microsoft Windows Server 2012, great for HFT or low latency…☆19Oct 8, 2012Updated 13 years ago
- UI application that can compare PE images in memory or in raw PE file☆19Feb 17, 2014Updated 12 years ago
- Minifilter Driver☆15Feb 10, 2017Updated 9 years ago
- Common Malware Techniques☆13Mar 26, 2023Updated 2 years ago
- [Not work] Deobfuscate obfuscated binaries!☆11Dec 16, 2016Updated 9 years ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆78Aug 12, 2015Updated 10 years ago
- Import debugging traces from WinDBG into IDA. Color the graph, fill in the value of all the operands, etc.☆26Nov 15, 2012Updated 13 years ago
- A command line tool to load and unload a device driver.☆46Jun 10, 2017Updated 8 years ago
- 对windows-api内容进行自动审查和过滤监控☆15May 30, 2017Updated 8 years ago
- ARMv7 detour function for hooking junk (no thumb support, unaligned accesses are not atomic)☆16Feb 5, 2017Updated 9 years ago
- Windows Vpn Scripter☆14Dec 7, 2016Updated 9 years ago
- Post-explotation Hacks☆14Jan 6, 2019Updated 7 years ago
- A tool evaluates security configurations of a given PE based on SDL without source code☆15Jul 6, 2014Updated 11 years ago
- Examples for detection of hidden processes on windows☆35Jun 11, 2014Updated 11 years ago
- windows kernel File redirection☆20Sep 21, 2014Updated 11 years ago
- Vulnerability Data Tracer - Published at Phrack 67 Article☆15Dec 12, 2014Updated 11 years ago