Alternatives and similar repositories for WinDbgCheatSheet

Users that are interested in WinDbgCheatSheet are comparing it to the libraries listed below

• jthuraisamy / ioctlpus
  ☆110Updated 4 years ago
• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆202Updated last week
• yardenshafir / PoolViewer
  An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.
  ☆138Updated 2 years ago
• hugsy / recon_2024_windbg_workshop
  ☆73Updated 10 months ago
• waleedassar / RestrictedKernelLeaks
  ☆159Updated 3 years ago
• enkomio / thematrix
  a PE Loader and Windows API tracer. Useful in malware analysis.
  ☆138Updated 2 years ago
• manyfacedllama / amsi-tracer
  Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …
  ☆109Updated 4 years ago
• uf0o / rootkit-arsenal-guacamole
  An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples
  ☆70Updated 3 years ago
• poona / APIMiner
  API Logger for Windows Executables
  ☆78Updated 4 years ago
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆79Updated last year
• hasherezade / mal_unpack_drv
  MalUnpack companion driver
  ☆98Updated 10 months ago
• Cyb3rWard0g / WinRpcFunctions
  ☆67Updated 2 years ago
• forrest-orr / Exploits
  A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in c…
  ☆120Updated 2 years ago
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆116Updated 10 months ago
• therealdreg / x64dbg-exploiting
  Do you want to use x64dbg instead of immunity debugger? oscp eCPPTv2 buffer overflow exploits pocs
  ☆89Updated last year
• KasperskyLab / Apihashes
  IDA Pro plugin for recognizing known hashes of API function names
  ☆81Updated 3 years ago
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆132Updated last year
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆114Updated 2 years ago
• Bw3ll / JOP_ROCKET
  This framework enables user to discover JOP gagdets and can automate building a complete JOP chain to bypass DEP. JOP ROCKET is the ultim…
  ☆105Updated 8 months ago
• vp777 / Windows-Non-Paged-Pool-Overflow-Exploitation
  Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…
  ☆227Updated 2 years ago
• jonaslyk / exploitkitpub
  ☆97Updated 3 years ago
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆69Updated last year
• Signal-Labs / IOCTLDump
  ☆143Updated last year
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆96Updated 3 years ago
• Dump-GUY / ghidra_scripts
  ☆71Updated last year
• SafeBreach-Labs / Back2TheFuture
  Find patterns of vulnerabilities on Windows in order to find 0-day and write exploits of 1-days. We use Microsoft security updates in ord…
  ☆183Updated 3 years ago
• jk45054 / CTF-writeups
  Writeups for CTF challenges
  ☆31Updated last year
• hasherezade / masm_shc
  A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.
  ☆178Updated 3 weeks ago
• mandiant / flare-kscldr
  FLARE Kernel Shellcode Loader
  ☆177Updated 6 years ago
• ulexec / EmotetCFU
  WIP Emotet Control Flow Unflattening using miasm and radare2
  ☆23Updated 2 years ago