A PowerShell front-end for the Windows debugger engine.
☆694Apr 3, 2024Updated last year
Alternatives and similar repositories for DbgShell
Users that are interested in DbgShell are comparing it to the libraries listed below
Sorting:
- WinDBG Anti-RootKit Extension☆646Jul 29, 2020Updated 5 years ago
- Sample extensions, scripts, and API uses for WinDbg.☆813Dec 27, 2025Updated 2 months ago
- Incident Response & Digital Forensics Debugging Extension☆393Dec 11, 2018Updated 7 years ago
- Set of tools to analyze Windows sandboxes for exposed attack surface.☆2,276Nov 6, 2025Updated 4 months ago
- PowerKrabsEtw is a PowerShell interface for doing real-time ETW tracing.☆103Nov 17, 2020Updated 5 years ago
- Libraries for extending WinDbg and its underlying components.☆114Sep 30, 2025Updated 5 months ago
- Grep-like WinDbg extension☆45Apr 7, 2017Updated 8 years ago
- reverse engineering extension plugin for windbg☆122Sep 30, 2019Updated 6 years ago
- Windows Object Explorer 64-bit☆1,893Mar 9, 2026Updated last week
- A PowerShell Module Dedicated to Reverse Engineering☆894Aug 20, 2021Updated 4 years ago
- Exploit primitives for PowerShell☆437Mar 25, 2018Updated 7 years ago
- Monitor activity of any driver☆352Nov 2, 2020Updated 5 years ago
- Simple Hierarchy in PowerShell - developing PowerShell provider got so much easier☆188Apr 27, 2023Updated 2 years ago
- A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container☆1,379Dec 9, 2024Updated last year
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆437Aug 22, 2018Updated 7 years ago
- Debugger extension for the Debugging Tools for Windows (WinDbg, KD, CDB, NTSD).☆69Nov 14, 2016Updated 9 years ago
- windows syscall table from xp ~ 10 rs4☆356Jun 8, 2018Updated 7 years ago
- 0CCh Windbg extension: include some useful commands☆114Aug 1, 2023Updated 2 years ago
- FLARE Kernel Shellcode Loader☆177May 3, 2019Updated 6 years ago
- Some sample code from my Zero Nights 2017 presentation.☆60Nov 19, 2017Updated 8 years ago
- makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]☆742Mar 17, 2019Updated 7 years ago
- Security Research from the Microsoft Security Response Center (MSRC)☆1,379Aug 8, 2024Updated last year
- Command line tracing tool for Windows, based on ETW.☆690Oct 15, 2025Updated 5 months ago
- A set of exploitation/reversing aids for IDA☆422Nov 28, 2017Updated 8 years ago
- Any useful windbg plugins I've written.☆117Apr 10, 2018Updated 7 years ago
- Sample use cases of the .NET native code hooking technique☆218Feb 9, 2018Updated 8 years ago
- A reference Device Guard code integrity policy consisting of FilePublisher deny rules for published Device Guard configuration bypasses☆115May 27, 2017Updated 8 years ago
- The history of Windows Internals via symbols.☆181Nov 4, 2021Updated 4 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆76Jun 8, 2019Updated 6 years ago
- C# debugging automation tool☆97Dec 8, 2022Updated 3 years ago
- Module to provide PowerShell functions that abstract Win32 API functions☆251Jun 6, 2024Updated last year
- A windbg extension, extracting token related contents☆41Dec 23, 2020Updated 5 years ago
- Microsoft.Diagnostics.Runtime is a set of APIs for introspecting processes and dumps.☆1,133Mar 11, 2026Updated last week
- Easily define in-memory enums, structs, and Win32 functions in PowerShell☆228Oct 14, 2018Updated 7 years ago
- PowerShell module containing all the PInvoke signatures published by Microsoft.☆44Apr 27, 2022Updated 3 years ago
- Windows RPC Python fuzzer☆164Nov 14, 2017Updated 8 years ago
- Powershell-based Windows Security Auditing Toolbox☆574Jan 9, 2019Updated 7 years ago
- A powerful reflection module for powershell.☆94Nov 24, 2023Updated 2 years ago
- DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.☆372Jan 8, 2020Updated 6 years ago