leandrofroes / gftraceLinks
A command line Windows API tracing tool for Golang binaries.
☆155Updated last year
Alternatives and similar repositories for gftrace
Users that are interested in gftrace are comparing it to the libraries listed below
Sorting:
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆116Updated 11 months ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆116Updated 2 years ago
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆73Updated last year
- GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…☆64Updated last month
- msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.☆152Updated last year
- ☆115Updated last month
- Small tool to convert beteween the PE alignments (raw and virtual).☆90Updated 2 years ago
- Recon 2023 slides and code☆79Updated 2 years ago
- Evasion Escaper is a project aimed at evading the checks that malicious software performs to detect if it's running in a virtual environm…☆106Updated 4 months ago
- ☆90Updated last year
- Implementation of Advanced Module Stomping and Heap/Stack Encryption☆217Updated last year
- masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)☆124Updated last year
- MalUnpack companion driver☆98Updated last year
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆150Updated 11 months ago
- ☆102Updated 2 years ago
- A collection of modules and scripts to help with analyzing Nim binaries☆74Updated 8 months ago
- Use YARA rules on Time Travel Debugging traces☆91Updated last year
- a PE Loader and Windows API tracer. Useful in malware analysis.☆139Updated 2 years ago
- A golang CLI tool to download malware from a variety of sources.☆146Updated this week
- Walks the CFG bitmap to find previously executable but currently hidden shellcode regions☆118Updated 2 years ago
- ☆106Updated last year
- Writeups for CTF challenges☆31Updated last year
- Admin to Kernel code execution using the KSecDD driver☆251Updated last year
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…☆165Updated 2 months ago
- ETW based POC to identify direct and indirect syscalls☆187Updated 2 years ago
- Helpful WinDBG command for kernel debugging☆23Updated 4 years ago
- ☆74Updated 11 months ago
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆89Updated 3 years ago
- A dynamic unpacking tool☆137Updated last year
- ☆105Updated 11 months ago