A PowerShell front-end for the Windows debugger engine.
☆693Apr 3, 2024Updated last year
Alternatives and similar repositories for DbgShell
Users that are interested in DbgShell are comparing it to the libraries listed below
Sorting:
- WinDBG Anti-RootKit Extension☆645Jul 29, 2020Updated 5 years ago
- Incident Response & Digital Forensics Debugging Extension☆389Dec 11, 2018Updated 7 years ago
- Set of tools to analyze Windows sandboxes for exposed attack surface.☆2,267Nov 6, 2025Updated 3 months ago
- Sample extensions, scripts, and API uses for WinDbg.☆812Dec 27, 2025Updated 2 months ago
- Monitor activity of any driver☆353Nov 2, 2020Updated 5 years ago
- PowerKrabsEtw is a PowerShell interface for doing real-time ETW tracing.☆103Nov 17, 2020Updated 5 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆437Aug 22, 2018Updated 7 years ago
- Windows Object Explorer 64-bit☆1,886Feb 10, 2026Updated 2 weeks ago
- reverse engineering extension plugin for windbg☆121Sep 30, 2019Updated 6 years ago
- Exploit primitives for PowerShell☆437Mar 25, 2018Updated 7 years ago
- Grep-like WinDbg extension☆45Apr 7, 2017Updated 8 years ago
- Libraries for extending WinDbg and its underlying components.☆114Sep 30, 2025Updated 5 months ago
- A PowerShell Module Dedicated to Reverse Engineering☆893Aug 20, 2021Updated 4 years ago
- A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container☆1,371Dec 9, 2024Updated last year
- makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]☆742Mar 17, 2019Updated 6 years ago
- Security Research from the Microsoft Security Response Center (MSRC)☆1,379Aug 8, 2024Updated last year
- Some sample code from my Zero Nights 2017 presentation.☆60Nov 19, 2017Updated 8 years ago
- Command line tracing tool for Windows, based on ETW.☆689Oct 15, 2025Updated 4 months ago
- A set of exploitation/reversing aids for IDA☆421Nov 28, 2017Updated 8 years ago
- Any useful windbg plugins I've written.☆117Apr 10, 2018Updated 7 years ago
- ☆30May 23, 2017Updated 8 years ago
- A reference Device Guard code integrity policy consisting of FilePublisher deny rules for published Device Guard configuration bypasses☆114May 27, 2017Updated 8 years ago
- DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.☆372Jan 8, 2020Updated 6 years ago
- Debugger extension for the Debugging Tools for Windows (WinDbg, KD, CDB, NTSD).☆69Nov 14, 2016Updated 9 years ago
- windows syscall table from xp ~ 10 rs4☆356Jun 8, 2018Updated 7 years ago
- FLARE Kernel Shellcode Loader☆178May 3, 2019Updated 6 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22May 31, 2017Updated 8 years ago
- Sample use cases of the .NET native code hooking technique☆218Feb 9, 2018Updated 8 years ago
- The history of Windows Internals via symbols.☆181Nov 4, 2021Updated 4 years ago
- 0CCh Windbg extension: include some useful commands☆114Aug 1, 2023Updated 2 years ago
- Powershell-based Windows Security Auditing Toolbox☆573Jan 9, 2019Updated 7 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆266Nov 30, 2018Updated 7 years ago
- Tool written in python3 to determine where the AV signature is located in a binary/payload☆315Mar 24, 2018Updated 7 years ago
- InjectProc - Process Injection Techniques [This project is not maintained anymore]☆998Feb 10, 2019Updated 7 years ago
- A set of demos and a PowerShell module to interact with DotNetInterop.☆69Apr 7, 2018Updated 7 years ago
- C# debugging automation tool☆96Dec 8, 2022Updated 3 years ago
- inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extr…☆294Sep 30, 2023Updated 2 years ago
- Remote Recon and Collection☆459Nov 23, 2017Updated 8 years ago
- Hypervisor-based debugger☆191Dec 2, 2020Updated 5 years ago