IDA script for vmprotect Windows Api address decoder
☆54Jun 8, 2021Updated 4 years ago
Alternatives and similar repositories for vwaad
Users that are interested in vwaad are comparing it to the libraries listed below
Sorting:
- Kernel Stack info leak at exportObjectToClient function☆42May 21, 2019Updated 6 years ago
- Kernel-mode file scanner☆19Jul 16, 2018Updated 7 years ago
- PinVMP:虚拟化代码辅助分析工具☆148May 27, 2018Updated 7 years ago
- This project demonstares an illegal read- and write- access to the kernel-mode data for both allocated by 3rd party drivers and EPROCESS …☆13Mar 6, 2018Updated 8 years ago
- hooking KiUserApcDispatcher☆27Apr 3, 2017Updated 8 years ago
- PoC for CVE-2019-0888 - Use-After-Free in Windows ActiveX Data Objects (ADO)☆40Jul 9, 2019Updated 6 years ago
- Archive from the article CVE-2015-5119 Flash ByteArray UaF: A beginner's walkthrough☆13Sep 10, 2015Updated 10 years ago
- ☆13Nov 1, 2017Updated 8 years ago
- ☆35Jul 20, 2021Updated 4 years ago
- Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.☆24Jan 23, 2018Updated 8 years ago
- Create and use macros in IDA's CLIs☆66Dec 26, 2025Updated 2 months ago
- A windbg extension, extracting token related contents☆41Dec 23, 2020Updated 5 years ago
- Windows Hypervisor Platform client☆31Jun 13, 2018Updated 7 years ago
- Kernel mode windows NT API logger☆22Sep 9, 2019Updated 6 years ago
- windbg plugin for win32k debugging☆75Oct 14, 2019Updated 6 years ago
- Add More Features for x64dbg Script System,with some Functions which will help Plugin Coder☆128Dec 26, 2021Updated 4 years ago
- Exploits for YARA 3.7.1 & 3.8.1☆32Dec 20, 2018Updated 7 years ago
- crash poc & Leak info PoC☆18Mar 19, 2018Updated 7 years ago
- LLVM based devirtualization PoC’s.☆21Dec 11, 2021Updated 4 years ago
- User-mode part of Zerokit platform☆22Mar 30, 2019Updated 6 years ago
- Simple poc of CVE-2018-8414 Windows Package Setting RCE Vulnerability☆22Sep 21, 2020Updated 5 years ago
- Reverse engineering tutorials☆159Oct 17, 2017Updated 8 years ago
- Open Course for diving security internal☆52Nov 11, 2019Updated 6 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆104May 14, 2020Updated 5 years ago
- IDA plugin that displays the P-code for the current function☆72Nov 18, 2025Updated 3 months ago
- Confirms the capability of Hardware-Accelerated Virtualization Technology.☆10Feb 26, 2026Updated last week
- 💉 Personal project that I inject into games for debugging☆20Nov 30, 2016Updated 9 years ago
- Protects deletion of files with a specified extension using a kernel-mode driver.☆76Jul 16, 2018Updated 7 years ago
- A simple kernel mode driver that hooks some values at the KUSER_SHARED_DATA structure.☆27Jan 7, 2020Updated 6 years ago
- IDA plugin to pinpoint obfuscated code☆143Apr 29, 2022Updated 3 years ago
- IDA Pro plugin to show functions in a tree view☆115Apr 17, 2021Updated 4 years ago
- ☆18Feb 6, 2019Updated 7 years ago
- Allows you to add breakpoints from IDA (from the graph/text view) to WinDbg easily☆14Oct 10, 2018Updated 7 years ago
- ☆11Mar 12, 2021Updated 4 years ago
- Utility for dumping all the information Capstone has on given instructions.☆23Oct 1, 2021Updated 4 years ago
- VMAttack PlugIn for IDA Pro☆866Nov 30, 2017Updated 8 years ago
- VMX intrinsics plugin for Hex-Rays decompiler☆74Oct 28, 2019Updated 6 years ago
- various c++ utility classes☆24Oct 2, 2025Updated 5 months ago
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆55Jul 8, 2022Updated 3 years ago