luisgf / windd
A Windows disk dumper
☆21Updated 9 years ago
Alternatives and similar repositories for windd:
Users that are interested in windd are comparing it to the libraries listed below
- Discover TimeDateStamps In PE File☆17Updated 9 years ago
- Example/starter code for custom Windows application compatibility shims☆31Updated 4 years ago
- Dump Windows registry hives as text.☆16Updated 6 years ago
- Demonstrate the behavior of the tunnel cache on Windows☆9Updated 5 years ago
- Disables ASLR flag IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE in IMAGE_OPTIONAL_HEADER on pre-compiled EXE. Works for both 32 and 64 bit Windo…☆20Updated 4 years ago
- Get random bytes from the TPM (tool + BCrypt RNG provider)☆17Updated 4 years ago
- smtp-user-enum.pl ported into a recon-ng module.☆9Updated 10 years ago
- DeepToad is a library and a tool to clusterize similar files using fuzzy hashing☆20Updated 5 years ago
- This is a simple tool to dump all the reparse points on an NTFS volume.☆33Updated 4 years ago
- Offline Active Directory Domain Services (AD DS) Join☆11Updated 8 years ago
- EFI bios rom dumping tools☆20Updated 11 years ago
- Crystal Anti-Exploit Protection 2012☆37Updated 4 years ago
- History and analysis of Windows desktop images☆17Updated 4 years ago
- Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loadi…☆16Updated 7 years ago
- module for certexfil☆15Updated 2 years ago
- Carve files for MFT entries (eg. blkls output or memory dumps). Recovers filenames (long & short), timestamps ($STD & $FN) and data if re…☆21Updated 5 years ago
- Configure SPI flash write protection.☆23Updated 4 years ago
- Parse Microsoft shim databases☆30Updated 3 months ago
- Mass decryptor for Eazfuscator.net Symbol Names Encryption☆9Updated 6 years ago
- Full reversing of the Microsoft Auxiliary Windows API Library and ported to C☆23Updated 4 months ago
- Forensics triage tool relying on Volatility and Foremost☆26Updated last year
- Patches Kernel DMA Protection onto unsupported Thunderbolt-powered systems.☆24Updated 4 years ago
- Automatic generator of YARA modules based in protocol buffers☆16Updated 2 months ago
- radare2 script to help on COM objects reverse engineering☆11Updated 7 years ago
- UPDATED 2022 Flame malware sourcecode available !! Forked. I will later provide my sample of Flame, Duqu and Gauss.☆19Updated last year
- AutoIt Analysis Library: Parser & Emulator For Malware Researchers☆21Updated 5 years ago
- Debugger checks in 3 ways☆18Updated 7 years ago
- Convert .reg to registry hive and reciprocally, without elevation☆20Updated this week
- D00☆6Updated 3 years ago
- The hidden mstsc recorder player☆28Updated 5 years ago