Alternatives and similar repositories for CTF-writeups

Users that are interested in CTF-writeups are comparing it to the libraries listed below

• hugsy / recon_2024_windbg_workshop
  ☆74Updated last year
• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆206Updated 3 months ago
• huettenhain / ghidradark
  How to retro theme your Ghidra
  ☆35Updated 9 months ago
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆118Updated last year
• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆152Updated last year
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆116Updated 2 years ago
• ucsb-seclab / popkorn-artifact
  ☆80Updated last week
• xalicex / kernel-debug-lab-for-virtual-box
  How to set up 2 VirtualBox VM to debug kernel driver using windbg
  ☆55Updated 3 years ago
• idiom / stackstack
  ☆31Updated 3 years ago
• struppigel / hedgehog-tools
  ☆113Updated last month
• intel471 / coderex
  A tool that automates regex generation for the x86 and x86-64 instruction sets
  ☆72Updated last year
• 0vercl0k / symbolizer-rs
  A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.
  ☆94Updated 10 months ago
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆79Updated 2 years ago
• therealdreg / masm32-kernel-programming
  masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)
  ☆125Updated 2 years ago
• p0dalirius / pyPDBdownload
  A Python script to download PDB files associated with a Portable Executable (PE)
  ☆125Updated 6 months ago
• hasherezade / flareon2023
  ☆25Updated 9 months ago
• waleedassar / RestrictedKernelLeaks
  ☆163Updated 3 years ago
• Signal-Labs / IOCTLDump
  ☆147Updated 2 years ago
• tandasat / hvext
  The Windbg extensions to study Hyper-V on Intel and AMD processors.
  ☆156Updated 5 months ago
• hasherezade / mal_unpack_drv
  MalUnpack companion driver
  ☆98Updated last year
• VoidSec / ioctlpus
  IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).
  ☆93Updated 3 years ago
• KasperskyLab / Apihashes
  IDA Pro plugin for recognizing known hashes of API function names
  ☆81Updated 3 years ago
• N0fix / rustbininfo
  Get information about stripped rust executables
  ☆33Updated 3 months ago
• VinCSS-Public-Projects / VinCSS-RE-Tools-Ultilities
  VinCSS Reverse Engineering, Malware Analysing Tools & Ultilities
  ☆27Updated 3 years ago
• waleedassar / SimpleNTSyscallFuzzer
  ☆145Updated last year
• alex-ilgayev / windbg-kernel-debug-cheat-sheet
  Helpful WinDBG command for kernel debugging
  ☆24Updated 4 years ago
• 0vercl0k / snapshot
  WinDbg extension written in Rust to dump the CPU / memory state of a running VM
  ☆119Updated 3 months ago
• 0vercl0k / rp-bf.rs
  rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump
  ☆117Updated last year
• mandiant / dncil
  The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.
  ☆166Updated 2 weeks ago
• AaLl86 / WindowsInternals
  Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book
  ☆112Updated last year