microsoft / SandboxSecurityTools

Related projects ⓘ

Alternatives and complementary repositories for SandboxSecurityTools

• trailofbits / RpcInvestigator
  Exploring RPC interfaces on Windows
  ☆260Updated 9 months ago
• daem0nc0re / SharpWnfSuite
  C# Utilities for Windows Notification Facility
  ☆124Updated 6 months ago
• cyberark / RPCMon
  RPC Monitor tool based on Event Tracing for Windows
  ☆328Updated 2 months ago
• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆180Updated 2 weeks ago
• AaLl86 / WindowsInternals
  Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book
  ☆101Updated 4 months ago
• FuzzySecurity / BulkBindex
  Winbindex bot to pull in binaries for specific releases
  ☆46Updated last year
• jonaslyk / exploitkitpub
  ☆94Updated 2 years ago
• jsecurity101 / ETWInspector
  ☆152Updated 5 months ago
• Cyb3rWard0g / WinRpcFunctions
  ☆68Updated 2 years ago
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆78Updated last year
• pmatula / Windows-Internals-Learning-Resources
  ☆94Updated 2 months ago
• tyranid / windows-security-internals
  A repository for additional files related to the book Windows Security Internals with PowerShell from No Starch Press.
  ☆127Updated 7 months ago
• jsecurity101 / JonMon
  ☆173Updated 3 months ago
• pathtofile / Sealighter
  Sysmon-Like research tool for ETW
  ☆333Updated last year
• nccgroup / DetectWindowsCopyOnWriteForAPI
  Enumerate various traits from Windows processes as an aid to threat hunting
  ☆183Updated 2 years ago
• hugsy / recon_2024_windbg_workshop
  ☆71Updated 4 months ago
• zodiacon / syllabi
  ☆60Updated 9 months ago
• Signal-Labs / IOCTLDump
  ☆131Updated last year
• mattifestation / AntimalwareBlight
  Execute PowerShell code at the antimalware-light protection level.
  ☆137Updated last year
• tandasat / hvext
  The Windbg extension that implements commands helpful to study Hyper-V on Intel processors.
  ☆129Updated 3 weeks ago
• jonaslyk / temp
  ☆65Updated last year
• enkomio / thematrix
  a PE Loader and Windows API tracer. Useful in malware analysis.
  ☆137Updated 2 years ago
• pathtofile / SealighterTI
  Combining Sealighter with unpatched exploits to run the Threat-Intelligence ETW Provider
  ☆162Updated last year
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆113Updated last year
• jsecurity101 / TelemetrySource
  ☆221Updated 6 months ago
• TimMisiak / WinDbgCookbook
  This is a repo for small, useful scripts and extensions
  ☆238Updated last year
• n1ght-w0lf / WinDbgCheatSheet
  ☆134Updated 3 years ago
• yardenshafir / PoolViewer
  An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.
  ☆124Updated last year
• mandiant / STrace
  A DTrace on Windows Reimplementation
  ☆328Updated last week
• forrest-orr / Exploits
  A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in c…
  ☆120Updated 2 years ago