p0dalirius / pdbdownload
A Python script to download PDB files associated with a Portable Executable (PE)
☆115Updated 3 months ago
Related projects ⓘ
Alternatives and complementary repositories for pdbdownload
- ☆131Updated last year
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆84Updated 2 years ago
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆109Updated 3 months ago
- rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump☆111Updated 6 months ago
- Abusing exceptions for code execution.☆106Updated last year
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆114Updated 2 months ago
- Static Binary Instrumentation tool for Windows x64 executables☆180Updated last week
- A kernel vulnerability used to achieve arbitrary read-write on Windows prior to July 2022☆105Updated last year
- Writeups for CTF challenges☆30Updated 11 months ago
- ☆65Updated last year
- Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)☆92Updated last year
- Finding Truth in the Shadows☆84Updated last year
- Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book☆101Updated 4 months ago
- BYOVD: Loading dbk64.sys and grabbing a handle to it☆149Updated 2 years ago
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆221Updated 2 years ago
- Minifilter Callback Patching Proof-of-Concept☆61Updated 2 years ago
- ☆131Updated 9 months ago
- Report and exploit of CVE-2023-36427☆87Updated 11 months ago
- msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.☆148Updated 10 months ago
- The Windbg extension that implements commands helpful to study Hyper-V on Intel processors.☆129Updated 3 weeks ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆236Updated 2 years ago
- Windows KASLR bypass using prefetch side-channel☆68Updated 6 months ago
- Recon 2023 slides and code☆78Updated last year
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆111Updated this week
- a PE Loader and Windows API tracer. Useful in malware analysis.☆137Updated 2 years ago
- LPE exploit for CVE-2023-36802☆22Updated last year
- Small visualizator for PE files☆67Updated last year
- A attempt at replicating BLACKLOTUS capabilities, whilst not acting as a direct mimic.☆85Updated last year
- ☆94Updated 2 years ago
- ☆43Updated 2 years ago