m417z / x64dbg-xfg-marker
An x64dbg plugin which marks XFG call signatures as data
☆73Updated last year
Alternatives and similar repositories for x64dbg-xfg-marker:
Users that are interested in x64dbg-xfg-marker are comparing it to the libraries listed below
- A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering☆33Updated 2 months ago
- ☆25Updated 2 years ago
- WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs☆17Updated last year
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆26Updated last year
- Windows kernel PDB data parsed into YAML☆34Updated 4 months ago
- An x64dbg plugin which helps make sense of long C++ symbols☆59Updated last year
- Support Windows OS Reversing by searching easily for references to functions across many DLLs☆34Updated 3 years ago
- ☆23Updated last year
- Winbindex bot to pull in binaries for specific releases☆46Updated last year
- Example of building an application verifer DLL☆45Updated 9 months ago
- This x64dbg plugin allows you to upload your sample to Malcore and view the results.☆33Updated last year
- ☆70Updated 2 years ago
- Finding Truth in the Shadows☆88Updated 2 years ago
- Windows PDB Parser using Imagehlp library.☆16Updated 2 years ago
- A post-processing script for TinyTracer☆38Updated last year
- A collection of tools, source code, and papers researching Windows' implementation of CET.☆81Updated 4 years ago
- Enabled / Disable LSA Protection via BYOVD☆66Updated 3 years ago
- A few examples of how to trap virtual memory access on Windows.☆27Updated 2 months ago
- SetWinEventHook Sample☆46Updated last year
- Tiny driver patch to allow kernel callbacks to work on Win10 21h1☆34Updated 3 years ago
- An experimental dynamic malware unpacker based on Intel Pin and PE-sieve☆59Updated 6 months ago
- Small visualizator for PE files☆67Updated last year
- Get-PDInvokeImports is tool (PowerShell module) which is able to perform automatic detection of P/Invoke, Dynamic P/Invoke and D/Invoke u…☆53Updated 2 years ago
- Samples from my book Windows Native API programming☆60Updated 2 weeks ago
- ☆29Updated 3 years ago
- A Python script to download PDB files associated with a Portable Executable (PE)☆119Updated last month
- An example of how to use Microsoft Windows Warbird technology☆27Updated last year
- Different tools for Microsoft Hyper-V researching☆48Updated 9 months ago
- ☆18Updated 4 years ago