marche147 / pepatchLinks
A hacky tool to patch PE binaries.
☆25Updated 7 years ago
Alternatives and similar repositories for pepatch
Users that are interested in pepatch are comparing it to the libraries listed below
Sorting:
- Python based angr plug in for IDA Pro.☆35Updated 7 years ago
- CVE-2020-0890 | Windows Hyper-V Denial of Service Vulnerability proof-of-concept code☆36Updated 4 years ago
- Control Flow Guard bypass using LoadLibrary and IsBadCodePtr☆45Updated 8 years ago
- ncurses shellcode/instructions tester using unicorn-engine☆13Updated 4 months ago
- An Integrity-Check Monitoring Pintool☆57Updated 4 years ago
- ☆34Updated 3 years ago
- ROP database plugin for IDA☆31Updated 6 years ago
- Course sample for SMT-Based Binary Program Analysis training class☆30Updated 7 years ago
- A fast execution trace symbolizer for Windows.☆131Updated last year
- Python portage of the Microcode Explorer plugin☆31Updated 6 years ago
- A little WinDbg extension to help dump the state of Win32k Type Isolation structures.☆38Updated 7 years ago
- ☆33Updated 2 years ago
- Allows IDA PRO to disassemble x86-64 code (WOW64) in 32-bit database☆25Updated 3 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆35Updated 10 months ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆29Updated 8 years ago
- Microsoft Edge MemGC Internals☆17Updated 9 years ago
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆57Updated 4 years ago
- Decrement Windows Kernel for fun and profit☆38Updated 7 years ago
- Sample WinDbg extension☆14Updated 5 years ago
- Import DynamoRIO drcov code coverage data into Ghidra☆43Updated last year
- ☆34Updated 7 years ago
- prebuild angr wheels for Windows on x86_64☆15Updated 6 years ago
- Windbg extension that allows you analyze Control Flow Guard map☆35Updated 3 years ago
- dr.rer.oec.gadget IDAPython plugin for the Interactive Disassembler <ABANDONED PROJECT>☆66Updated 8 years ago
- IDA script for vmprotect Windows Api address decoder☆51Updated 3 years ago
- A pytest module for The Interactive Disassembler and IDAPython; Record and Replay IDAPython API, execute inside IDA or use mockups of IDA…☆47Updated 6 years ago
- ☆47Updated 2 years ago
- DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10☆53Updated last year
- A wrapper for capstone for bearparser☆14Updated 2 years ago
- Build your emulation environment as needed☆66Updated 4 years ago