tandasat / DumpVTableLinks
Generates a Python script to give public interface names in an ActiveX file to an IDB file.
☆48Updated 3 years ago
Alternatives and similar repositories for DumpVTable
Users that are interested in DumpVTable are comparing it to the libraries listed below
Sorting:
- Helper utility for debugging windows PE/PE+ loader.☆52Updated 10 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub☆79Updated 12 years ago
- x64dbg conditional branches logger [Plugin]☆71Updated 8 years ago
- Open and generic Anti-Anti Reversing Framework. Works in 32 and 64 bits.☆63Updated 12 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆77Updated 14 years ago
- Windows anti-rootkit library☆39Updated 10 years ago
- A command line tool to load and unload a device driver.☆47Updated 7 years ago
- Windows Kernel Driver - Create a driver device in TDI layer of windows kernel to capture network data packets☆37Updated 10 years ago
- IDA Pro plug-in and tools for displaying 3D graphs of procedures using UbiGraph☆25Updated 11 years ago
- Windbg extension to find PatchGuard pages☆118Updated 10 years ago
- ☆28Updated 11 years ago
- PoC for detecting and dumping code injection (built and extended on UnRunPE)☆56Updated 6 years ago
- just an lite AntiRootkit for interesting☆23Updated 9 years ago
- OllyHeapTrace is a plugin for OllyDbg to trace the heap operations being performed by a process.☆54Updated 13 years ago
- Wow64 syscall hook☆40Updated 8 years ago
- This is a VmProtect integrated debugger, that will essentially allow you to disasm and debug vmp partially virtualized functions at the v…☆46Updated 8 years ago
- A sample project for using Capstone from a driver in Visual Studio 2015☆34Updated 9 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆58Updated 8 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆29Updated 8 years ago
- A-Protect Anti Rootkit Tool☆53Updated 11 years ago
- A minifilter driver preserves all modified and deleted files.☆81Updated 9 years ago
- ☆27Updated 6 years ago
- Simple proof of concept code for injecting libraries on 64bit processes from a 32bit process☆94Updated 6 years ago
- ☆35Updated 9 years ago
- reversed emet tool☆24Updated 12 years ago
- ☆80Updated 7 years ago
- Simple standalone bundle of NT core APIs☆26Updated 9 years ago
- Brand New Code Injection for Windows https://breakingmalware.com/injection-techniques/atombombing-brand-new-code-injection-for-windows☆18Updated 8 years ago
- Analyze and attack windows applications using dll hijacking vulnerabilities☆56Updated 5 years ago
- Identifying Virtual Table Functions using VTBL IDA Pro Plugin + Deviare Hooking Engine☆95Updated 12 years ago