tandasat / Sushi
a Japanese food keeps you sane
☆118Updated 9 years ago
Related projects ⓘ
Alternatives and complementary repositories for Sushi
- IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.☆105Updated 11 months ago
- IntelVT-X nice feature -> tool☆94Updated 10 years ago
- Loading unsigned code into kernel in Windows 10 (64) with help of VMware Workstation Pro/Player design flaw☆136Updated 7 years ago
- Elevation of privilege detector based on HyperPlatform☆117Updated 7 years ago
- Hypervisor based tool for monitoring system register accesses.☆141Updated 6 years ago
- Automatically exported from code.google.com/p/hyperdbg☆101Updated 9 years ago
- ☆85Updated 7 years ago
- Automatically exported from code.google.com/p/virtdbg☆96Updated 9 years ago
- Intercept arbitrary functions at run-time, without knowing their typedefs☆86Updated 7 years ago
- A project that aims to automatically devirtualize code that has been virtualized using x86virt☆125Updated last year
- Local Kernel Debugger (LKD) is a python wrapper around dbgengine.dll☆92Updated 8 years ago
- Recon 2015 Presentation from Alex Ionescu☆232Updated 8 years ago
- I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016☆159Updated 7 years ago
- A branch-monitor-based solution for process monitoring.☆128Updated 4 years ago
- Windbg extension to find PatchGuard pages☆117Updated 10 years ago
- ☆91Updated 8 years ago
- Kernel Address Space Layout Randomization (KASLR) Recovery Software☆97Updated 7 years ago
- An analysis of the Warbird virtual-machine protection for the CI!g_pStore☆230Updated 6 years ago
- Collection Of Anti-Debugging Tricks☆96Updated 8 years ago
- Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )☆132Updated 8 years ago
- TLB splitting VMM☆161Updated 8 years ago
- Hypervisor-based debugger☆185Updated 3 years ago
- ☆67Updated 3 years ago
- qb-sync is an open source tool to add some helpful glue between IDA Pro and Windbg. Its core feature is to dynamically synchronize IDA's …☆116Updated 9 years ago
- nyā☆70Updated 9 years ago
- Semantic Binary Code Analysis Framework☆124Updated 9 years ago
- windows kernelmode and usermode IAT hook☆142Updated 3 years ago
- Bunch of techniques potentially used by malware to detect analysis environments☆156Updated 8 years ago
- Win64/Rovnix - Volume Boot Record Bootkit☆173Updated 9 years ago