nccgroup / ICPinLinks
An Integrity-Check Monitoring Pintool
☆58Updated 4 years ago
Alternatives and similar repositories for ICPin
Users that are interested in ICPin are comparing it to the libraries listed below
Sorting:
- IDA plugin to explore and browse tags☆56Updated 6 years ago
- ☆28Updated 5 years ago
- ☆34Updated 4 years ago
- Windows API listing in JSON format - generated from SDK headers + SDK API documentation☆66Updated 5 years ago
- IDA script for vmprotect Windows Api address decoder☆51Updated 4 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆76Updated 6 years ago
- A copy of my Mathematics and Computer Engineering B.Sc. thesis☆20Updated 4 years ago
- Windbg extension that allows you analyze Control Flow Guard map☆36Updated 3 years ago
- Python bindings for the Microsoft Hypervisor Platform APIs.☆79Updated 6 years ago
- clone of armadillo patched for windows☆47Updated 11 months ago
- Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis☆45Updated 8 years ago
- My notes about Genyatyk VM crackme☆26Updated 5 years ago
- ☆76Updated 4 years ago
- VMX intrinsics plugin for Hex-Rays decompiler☆71Updated 5 years ago
- x86 bootloader emulation with Miasm (case of NotPetya)☆41Updated 6 years ago
- A repository with simple projects created for testing/learning purpose☆46Updated 3 years ago
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆57Updated 5 years ago
- Import DynamoRIO drcov code coverage data into Ghidra☆44Updated last year
- ☆48Updated 3 years ago
- Plugins for IDA Pro and Hex-Rays☆46Updated 7 years ago
- ☆48Updated 5 years ago
- dk is a WinDbg extenion for dumping memory data in meaningful and organized ways, it is an enhancement of my previous tokenext project.☆24Updated 2 years ago
- XDV is disassembler or debugger that works based on the extension plugin.☆57Updated 6 years ago
- Random tools and things for creating+injecting complex organisms into a process on both the posix and windows platforms. Includes support…☆38Updated last month
- Create and use macros in IDA's CLIs☆65Updated 2 years ago
- A fast execution trace symbolizer for Windows.☆131Updated last year
- An API Monitor based on Instrumentation☆44Updated 7 years ago
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆55Updated 3 years ago
- findLoop - find possible encryption/decryption or compression/decompression code☆26Updated 6 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆32Updated 8 years ago