hugsy / defcon_27_windbg_workshopLinks
DEFCON 27 workshop - Modern Debugging with WinDbg Preview
☆734Updated 9 months ago
Alternatives and similar repositories for defcon_27_windbg_workshop
Users that are interested in defcon_27_windbg_workshop are comparing it to the libraries listed below
Sorting:
- Dump of win32k POCs for bugs I've found☆380Updated 3 years ago
- Examples of leaking Kernel Mode information from User Mode on Windows☆617Updated 8 years ago
- My personal cheat sheet for using WinDbg for kernel debugging☆433Updated 4 months ago
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆821Updated 3 years ago
- ☆808Updated 2 years ago
- Checksec, but for Windows: static detection of security mitigations in executables☆599Updated 7 months ago
- RpcView is a free tool to explore and decompile Microsoft RPC interfaces☆998Updated last year
- A bunch of JavaScript extensions for WinDbg.☆344Updated 8 months ago
- Scripts and cheatsheets for IDAPython☆685Updated last year
- Windows Kernel Drivers fuzzer☆367Updated 8 years ago
- Internals information about Hyper-V☆701Updated last month
- A curated list of Hyper-V exploitation resources, fuzzing and vulnerability research.☆423Updated 4 months ago
- Quickly debug shellcode extracted during malware analysis☆610Updated 2 years ago
- Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits☆406Updated 5 years ago
- Useful scripts for WinDbg using the debugger data model☆420Updated last year
- Public repository for windbglib, a wrapper around pykd.pyd (for Windbg), used by mona.py☆329Updated 2 years ago
- Incident Response & Digital Forensics Debugging Extension☆385Updated 6 years ago
- awesome windbg extensions☆338Updated 6 years ago
- collect for learning cases☆592Updated last year
- My notes while studying Windows internals☆435Updated 8 months ago
- Winnie makes fuzzing Windows applications easy☆563Updated 2 years ago
- A small, null-free Windows shellcode that executes calc.exe (x86/x64, all OS/SPs)☆423Updated last year
- Vulnerability examples.☆408Updated last year
- ☆818Updated 5 years ago
- CFB is a ProcMon-style tool designed to assist capturing IRPs sent to Windows drivers.☆330Updated last year
- Time Travel Debugging IDA plugin☆592Updated last year
- Portable Executable parsing library (from PE-bear)☆657Updated 4 months ago
- Course materials for Advanced Binary Deobfuscation by NTT Secure Platform Laboratories☆1,137Updated 4 years ago
- Virtual Machine Introspection, Tracing & Debugging☆584Updated 3 years ago
- ☆195Updated 7 years ago