hugsy / recon_2024_windbg_workshopLinks
☆74Updated 11 months ago
Alternatives and similar repositories for recon_2024_windbg_workshop
Users that are interested in recon_2024_windbg_workshop are comparing it to the libraries listed below
Sorting:
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆117Updated last month
- Static Binary Instrumentation tool for Windows x64 executables☆206Updated last month
- Writeups for CTF challenges☆31Updated last year
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆116Updated 11 months ago
- ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…☆125Updated last week
- Recon 2023 slides and code☆79Updated 2 years ago
- ☆70Updated 2 years ago
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆89Updated 3 years ago
- ☆145Updated last year
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆116Updated 2 years ago
- rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump☆116Updated last year
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆73Updated last year
- A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.☆94Updated 8 months ago
- Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules☆88Updated this week
- Windows KASLR bypass using prefetch side-channel☆102Updated last year
- ☆145Updated 2 years ago
- Winbindex bot to pull in binaries for specific releases☆48Updated last year
- ☆52Updated 8 months ago
- Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book☆110Updated 11 months ago
- A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in c…☆119Updated 2 years ago
- ☆48Updated 2 months ago
- Golem automates C/C++ vulnerability discovery with SemGrep+LLVM+LLM☆34Updated this week
- HEVD Exploit: BufferOverflowNonPagedPoolNx on Windows 10 22H2 - Escalating from Low Integrity to SYSTEM via Aligned Chunk Confusion☆53Updated 2 months ago
- msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.☆152Updated last year
- LPE exploit for CVE-2023-36802☆22Updated last year
- Unofficial Common Log File System (CLFS) Documentation☆179Updated 3 years ago
- Aplos an extremely simple fuzzer for Windows binaries.☆69Updated 4 months ago
- Slide of my conference presentations☆14Updated 9 months ago
- Report and exploit of CVE-2023-36427☆90Updated last year
- Static binary instrumentation for windows kernel drivers, to use with winafl☆75Updated 4 months ago