n1ght-w0lf / WinDbgCheatSheet
☆135Updated 3 years ago
Alternatives and similar repositories for WinDbgCheatSheet:
Users that are interested in WinDbgCheatSheet are comparing it to the libraries listed below
- ☆95Updated 3 years ago
- Recon 2023 slides and code☆79Updated last year
- ☆108Updated 4 years ago
- a PE Loader and Windows API tracer. Useful in malware analysis.☆138Updated 2 years ago
- Windows Kernel Programming☆124Updated 4 years ago
- ☆158Updated 3 years ago
- A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in c…☆120Updated 2 years ago
- ☆67Updated 2 years ago
- Static Binary Instrumentation tool for Windows x64 executables☆198Updated last month
- An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples☆69Updated 2 years ago
- ☆73Updated 8 months ago
- Set of antianalysis techniques found in malware☆129Updated last year
- Winbindex bot to pull in binaries for specific releases☆47Updated last year
- MalUnpack companion driver☆95Updated 9 months ago
- C# Utilities for Windows Notification Facility☆131Updated 4 months ago
- An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.☆136Updated 2 years ago
- Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…☆220Updated 2 years ago
- Find patterns of vulnerabilities on Windows in order to find 0-day and write exploits of 1-days. We use Microsoft security updates in ord…☆180Updated 3 years ago
- Do you want to use x64dbg instead of immunity debugger? oscp eCPPTv2 buffer overflow exploits pocs☆83Updated last year
- Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …☆108Updated 3 years ago
- How to set up 2 VirtualBox VM to debug kernel driver using windbg☆54Updated 2 years ago
- Unofficial Common Log File System (CLFS) Documentation☆172Updated 3 years ago
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆88Updated 3 years ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆115Updated last year
- PoC demonstrating the use of cve-2020-1034 for privilege escalation☆123Updated 4 years ago
- API Set Viewer☆88Updated 2 months ago
- Some of my windows kernel exploits for learning purposes☆122Updated 2 years ago
- Writeups for CTF challenges☆30Updated last year
- Process Monitor filter for finding privilege escalation vulnerabilities on Windows☆79Updated 3 years ago
- API Logger for Windows Executables☆78Updated 4 years ago