repnz/windbg-cheat-sheet external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

repnz/windbg-cheat-sheet

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/repnz/windbg-cheat-sheet)

Close

repnz / windbg-cheat-sheetView on GitHubMore

• External links
• Readme badge

My personal cheat sheet for using WinDbg for kernel debugging

☆466Apr 17, 2025Updated last year

Alternatives and similar repositories for windbg-cheat-sheet

Users that are interested in windbg-cheat-sheet are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• yardenshafir / WinDbg_Scripts

  View on GitHub
  Useful scripts for WinDbg using the debugger data model
  ☆432Mar 27, 2024Updated 2 years ago
• hugsy / defcon_27_windbg_workshop

  View on GitHub
  DEFCON 27 workshop - Modern Debugging with WinDbg Preview
  ☆747Nov 1, 2024Updated last year
• repnz / apc-research

  View on GitHub
  APC Internals Research Code
  ☆173Jun 28, 2020Updated 5 years ago
• 0vercl0k / windbg-scripts

  View on GitHub
  A bunch of JavaScript extensions for WinDbg.
  ☆367Nov 28, 2024Updated last year
• gerhart01 / Hyper-V-Internals

  View on GitHub
  Internals information about Hyper-V
  ☆739May 6, 2026Updated 2 weeks ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• hfiref0x / WinObjEx64

  View on GitHub
  Windows Object Explorer 64-bit
  ☆1,922Mar 22, 2026Updated last month
• microsoft / WinDbg-Samples

  View on GitHub
  Sample extensions, scripts, and API uses for WinDbg.
  ☆814Dec 27, 2025Updated 4 months ago
• Jb05s / Exploit-Dev-C

  View on GitHub
  ☆22Jul 10, 2020Updated 5 years ago
• repnz / autochk-rootkit

  View on GitHub
  Reverse engineered source code of the autochk rootkit
  ☆212Nov 1, 2019Updated 6 years ago
• vp777 / Windows-Non-Paged-Pool-Overflow-Exploitation

  View on GitHub
  Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…
  ☆261Sep 1, 2022Updated 3 years ago
• Cr4sh / KernelForge

  View on GitHub
  A library to develop kernel level Windows payloads for post HVCI era
  ☆506May 18, 2021Updated 5 years ago
• 0xcpu / ExecutiveCallbackObjects

  View on GitHub
  Research on Windows Kernel Executive Callback Objects
  ☆317Feb 22, 2020Updated 6 years ago
• sam-b / windows_kernel_address_leaks

  View on GitHub
  Examples of leaking Kernel Mode information from User Mode on Windows
  ☆639Jul 7, 2017Updated 8 years ago
• anhkgg / awesome-windbg-extensions

  View on GitHub
  awesome windbg extensions
  ☆363Mar 27, 2019Updated 7 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• hfiref0x / NtCall64

  View on GitHub
  Windows NT x64 syscall fuzzer
  ☆639Apr 2, 2026Updated last month
• TimMisiak / WinDbgCookbook

  View on GitHub
  This is a repo for small, useful scripts and extensions
  ☆261Jun 1, 2023Updated 2 years ago
• HyperDbg / HyperDbg

  View on GitHub
  State-of-the-art native debugging tools
  ☆3,795May 12, 2026Updated last week
• winsiderss / phnt

  View on GitHub
  Native API header files for the System Informer project.
  ☆1,412Mar 26, 2026Updated last month
• hugsy / windbg_js_scripts

  View on GitHub
  Toy scripts for playing with WinDbg JS API
  ☆244Jul 8, 2024Updated last year
• wbenny / injdrv

  View on GitHub
  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
  ☆1,288May 1, 2024Updated 2 years ago
• can1357 / NtRays

  View on GitHub
  Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
  ☆666Jan 28, 2025Updated last year
• ayoubfaouzi / windows-internals

  View on GitHub
  My notes while studying Windows internals
  ☆462Mar 27, 2026Updated last month
• zodiacon / Win10SysProgBookSamples

  View on GitHub
  Windows 10 System Programming book samples
  ☆453Oct 19, 2025Updated 7 months ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• yardenshafir / SymlinkCallback

  View on GitHub
  A driver that hooks C: volume using symbolic link callback to track all FS access to the volume
  ☆108Apr 24, 2020Updated 6 years ago
• yardenshafir / PoolViewer

  View on GitHub
  An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.
  ☆150Mar 2, 2023Updated 3 years ago
• 0vercl0k / kdmp-parser

  View on GitHub
  A Windows kernel dump C++ parser library with Python 3 bindings.
  ☆213Oct 5, 2025Updated 7 months ago
• m417z / winbindex

  View on GitHub
  An index of Windows binaries, including download links for executables such as exe, dll and sys files
  ☆821May 12, 2026Updated last week
• hasherezade / tiny_tracer

  View on GitHub
  A Pin Tool for tracing API calls etc
  ☆1,652Feb 8, 2026Updated 3 months ago
• synacktiv / Windows-kernel-SegmentHeap-Aligned-Chunk-Confusion

  View on GitHub
  PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap
  ☆211Jul 2, 2020Updated 5 years ago
• gdabah / win32k-bugs

  View on GitHub
  Dump of win32k POCs for bugs I've found
  ☆378Mar 6, 2022Updated 4 years ago
• wbenny / hvpp

  View on GitHub
  hvpp is a lightweight Intel x64/VT-x hypervisor written in C++ focused primarily on virtualization of already running operating system
  ☆1,319Mar 15, 2021Updated 5 years ago
• btbd / umap

  View on GitHub
  UEFI bootkit for driver manual mapping
  ☆595Jan 1, 2024Updated 2 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• VoidSec / DriverBuddyReloaded

  View on GitHub
  Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks
  ☆422Jul 4, 2025Updated 10 months ago
• h0mbre / ioctl.py

  View on GitHub
  ☆19Jan 12, 2020Updated 6 years ago
• HoShiMin / Kernel-Bridge

  View on GitHub
  Windows kernel hacking framework, driver template, hypervisor and API written on C++
  ☆1,812Nov 12, 2023Updated 2 years ago
• Sentinel-One / peafl64

  View on GitHub
  Static Binary Instrumentation tool for Windows x64 executables
  ☆205Sep 29, 2025Updated 7 months ago
• zodiacon / ProcMonXv2

  View on GitHub
  Process Monitor X v2
  ☆656Jan 22, 2024Updated 2 years ago
• ayoubfaouzi / cpu-internals

  View on GitHub
  Intel / AMD CPU Internals
  ☆1,193Apr 14, 2026Updated last month
• hacksysteam / HackSysExtremeVulnerableDriver

  View on GitHub
  HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux
  ☆3,002Feb 24, 2025Updated last year