therealdreg / windbgtocstruct

Related projects ⓘ

Alternatives and complementary repositories for windbgtocstruct

• therealdreg / Win.Cerdalux
  WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs
  ☆16Updated last year
• ch3rn0byl / WinDbg-Extensions
  ☆17Updated 3 years ago
• repnz / windows-imports-searcher
  Support Windows OS Reversing by searching easily for references to functions across many DLLs
  ☆33Updated 2 years ago
• Lima-X / XOrCryptEx
  XOrCryptEx lightweight C Utility/Algorithm
  ☆11Updated 2 years ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆69Updated last year
• 0xMegaByte / COM-Explained
  ☆27Updated 2 years ago
• JKornev / cfgdump
  Windbg extension that allows you analyze Control Flow Guard map
  ☆36Updated 3 years ago
• alfarom256 / MinifilterResearch
  ☆16Updated 2 years ago
• DownWithUp / WarbirdExamples
  An example of how to use Microsoft Windows Warbird technology
  ☆25Updated last year
• gabriellandau / CISpotter
  Code Integrity Violation Spotter
  ☆17Updated 5 months ago
• therealdreg / symseghelper
  Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode
  ☆19Updated last year
• ioncodes / rapid-kdbg-hyperv
  ☆15Updated last year
• therealdreg / pdbdump_bochs
  Dump PDB Symbols including support for Bochs Debugging Format (with wine support)
  ☆14Updated last year
• archercreat / api-tracer
  api-tracer is a tiny (useless) tracer
  ☆13Updated last year
• tandasat / CVE-2022-25949
  A years-old exploit of a local EoP vulnerability in Kingsoft Antivirus KWatch Driver version 2009.3.17.77.
  ☆36Updated 2 years ago
• mrexodia / MBR
  EDR PoC WIP LLC
  ☆10Updated 9 months ago
• hasherezade / pin_n_sieve
  An experimental dynamic malware unpacker based on Intel Pin and PE-sieve
  ☆57Updated 3 months ago
• malware-unicorn / pteroioctl-hook
  A driver to implement IOCTL hooking
  ☆23Updated 2 years ago
• ioncodes / pooldump
  ☆29Updated 2 years ago
• P1tt1cus / FastSymApi
  FastSymApi - A Fast API PDB Symbol Cache Server that efficiently caches and compresses PDBs on disk for quick and repeated retrieval.
  ☆18Updated last month
• ioncodes / rw
  allowing um r/w through km from um ioctl ™
  ☆12Updated 2 years ago
• worawit / malk
  Demonstrate calling a kernel function and handle process creation callback against HVCI
  ☆48Updated last year
• hasherezade / pe_utils
  A set of small utilities, helpers for PIN tracers
  ☆31Updated last year
• SamuelTulach / SecureGame
  Proof-of-concept game using VBS enclaves to protect itself from cheating
  ☆19Updated last week
• thalium / WinDbgFastObj
  ☆20Updated 3 years ago
• alfarom256 / drivers_and_shit
  ☆57Updated 2 years ago
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆62Updated last year
• OrShazam / ChainEngine
  automates exploits using ROP chains, using ntdll-scraper
  ☆16Updated 2 years ago
• 0vercl0k / inject
  Yet another Windows DLL injector.
  ☆38Updated 3 years ago