A WinDbg extension to trace COM interactions
☆132Aug 14, 2025Updated 10 months ago
Alternatives and similar repositories for comon
Users that are interested in comon are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Toy scripts for playing with WinDbg JS API☆244Jul 8, 2024Updated last year
- A POC for Windows Extension Host hooking☆24Jul 13, 2019Updated 6 years ago
- This is a repo for small, useful scripts and extensions☆262Jun 1, 2023Updated 3 years ago
- Cross-platform tool that allows browsing and extracting C and C++ type declarations from PDB files.☆372Feb 9, 2025Updated last year
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆257Jul 5, 2022Updated 3 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- An example of how to use Microsoft Windows Warbird technology☆96Apr 23, 2023Updated 3 years ago
- Monitor ETW events for Windows process mitigation policies, with stack traces☆30Oct 7, 2022Updated 3 years ago
- Enumerate various traits from Windows processes as an aid to threat hunting☆203Jan 13, 2022Updated 4 years ago
- Reverse engineered API for Microsoft's Time Travel Debugger☆36Apr 18, 2024Updated 2 years ago
- kernel driver used to monitor the activity of BadlionAnticheat.sys by patching its IAT☆32Jul 9, 2021Updated 4 years ago
- A Windows kernel dump C++ parser library with Python 3 bindings.☆214Oct 5, 2025Updated 8 months ago
- A kernel mode Windows rootkit in development.☆47Dec 31, 2021Updated 4 years ago
- windows kernelmode driver to inject dll into each and every process and perform systemwide function hooking☆54Aug 28, 2022Updated 3 years ago
- Small visualizator for PE files☆70Sep 20, 2023Updated 2 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- A tool to create COM class/interface relationships in neo4j☆50Oct 12, 2022Updated 3 years ago
- Application Verifier Dynamic Fault Injection☆42Jan 12, 2026Updated 5 months ago
- .lib file for linking against the NT CRT☆19Mar 18, 2022Updated 4 years ago
- Bindings for Microsoft WinDBG TTD☆240Aug 5, 2023Updated 2 years ago
- Lightweight WINAPI tracing with Pin☆27Aug 22, 2019Updated 6 years ago
- A code parser for C-Style header files that lets you to parse function's prototypes and data types used in their parameters.☆93Apr 17, 2022Updated 4 years ago
- Constexpr hash functions for C++☆19May 29, 2020Updated 6 years ago
- Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…☆265Sep 1, 2022Updated 3 years ago
- Sysmon-Like research tool for ETW☆393Nov 15, 2022Updated 3 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- ☆14Mar 13, 2023Updated 3 years ago
- BYOVD: Loading dbk64.sys and grabbing a handle to it☆163Jun 8, 2022Updated 4 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆68Aug 11, 2023Updated 2 years ago
- A Windows API hooking library !☆32Aug 29, 2022Updated 3 years ago
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆73Aug 11, 2023Updated 2 years ago
- Sample extensions, scripts, and API uses for WinDbg.☆821Dec 27, 2025Updated 6 months ago
- dk is a WinDbg extenion for dumping memory data in meaningful and organized ways, it is an enhancement of my previous tokenext project.☆26Updated this week
- A DTrace on Windows Reimplementation☆374May 28, 2026Updated last month
- hooks gServerHandlers xxxEventWndProc☆13May 1, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- INF Studio for easier working with driver installation files☆39Nov 11, 2023Updated 2 years ago
- Tool that allows comparing symbol, type and syscall information of Microsoft Windows binaries across different versions of the OS, using …☆387Jun 24, 2026Updated last week
- A collection of tools, source code, and papers researching Windows' implementation of CET.☆93Oct 6, 2020Updated 5 years ago
- rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump☆121May 1, 2024Updated 2 years ago
- CVE-2022-42046 Proof of Concept of wfshbr64.sys local privilege escalation via DKOM☆162Dec 24, 2022Updated 3 years ago
- reverse engineering extension plugin for windbg☆123Sep 30, 2019Updated 6 years ago
- WinDBG Anti-RootKit Extension☆642Jul 29, 2020Updated 5 years ago