n1ght-w0lf / WinDbgCheatSheet

Related projects: ⓘ

• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆176Updated last month
• waleedassar / RestrictedKernelLeaks
  ☆151Updated 3 years ago
• Cyb3rWard0g / WinRpcFunctions
  ☆68Updated 2 years ago
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆114Updated last year
• FuzzySecurity / BulkBindex
  Winbindex bot to pull in binaries for specific releases
  ☆44Updated last year
• jthuraisamy / ioctlpus
  ☆107Updated 4 years ago
• yardenshafir / PoolViewer
  An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.
  ☆121Updated last year
• hugsy / recon_2024_windbg_workshop
  ☆70Updated 2 months ago
• FULLSHADE / Kernel-exploits
  ☆123Updated this week
• daem0nc0re / SharpWnfSuite
  C# Utilities for Windows Notification Facility
  ☆122Updated 4 months ago
• jonaslyk / exploitkitpub
  ☆94Updated 2 years ago
• poona / APIMiner
  API Logger for Windows Executables
  ☆77Updated 3 years ago
• raminfp / basicwindowskernelprogramming
  Basic Windows Kernel Programming
  ☆120Updated 4 years ago
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆77Updated last year
• jk45054 / CTF-writeups
  Writeups for CTF challenges
  ☆28Updated 10 months ago
• uf0o / rootkit-arsenal-guacamole
  An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples
  ☆65Updated 2 years ago
• VoidSec / ioctlpus
  IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).
  ☆81Updated 2 years ago
• p0dalirius / pdbdownload
  A Python script to download PDB files associated with a Portable Executable (PE)
  ☆113Updated 2 months ago
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆105Updated 2 months ago
• ionescu007 / clfs-docs
  Unofficial Common Log File System (CLFS) Documentation
  ☆159Updated 2 years ago
• RixedLabs / Community-Papers
  RIXED LABS is open for contributions for it's community papers . If you want to publish a blog or a paper , it will be added to the site…
  ☆80Updated 2 years ago
• enkomio / thematrix
  a PE Loader and Windows API tracer. Useful in malware analysis.
  ☆138Updated 2 years ago
• forrest-orr / Exploits
  A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in c…
  ☆118Updated 2 years ago
• Signal-Labs / IOCTLDump
  ☆128Updated last year
• hasherezade / mal_unpack_drv
  MalUnpack companion driver
  ☆92Updated 3 months ago
• xalicex / kernel-debug-lab-for-virtual-box
  How to set up 2 VirtualBox VM to debug kernel driver using windbg
  ☆50Updated 2 years ago
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆124Updated last year
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆66Updated last year
• am0nsec / wspe
  Windows System Programming Experiments
  ☆214Updated 2 years ago
• airbus-cert / yara-ttd
  Use YARA rules on Time Travel Debugging traces
  ☆86Updated last year