zed-0xff / pedumpLinks
dump windows PE files using ruby
☆318Updated last week
Alternatives and similar repositories for pedump
Users that are interested in pedump are comparing it to the libraries listed below
Sorting:
- This is the main repository for metasm, a free assembler / disassembler / compiler written in ruby☆472Updated 2 months ago
- Persistent IAT hooking application - based on bearparser☆260Updated 2 years ago
- Portable Executable parsing library (from PE-bear)☆658Updated 3 months ago
- SmartDec decompiler☆405Updated 4 years ago
- Python code to parse Microsoft PDB files☆324Updated last year
- C++ application that uses memory and code hooks to detect packers☆271Updated 7 years ago
- Incident Response & Digital Forensics Debugging Extension☆383Updated 6 years ago
- A patch analysis tool☆363Updated 4 years ago
- Source from VMDE paper, adapted to 2015☆186Updated 7 years ago
- Better version of RunDll with GUI. This program allows you to load DLLs on Windows. You can select how to load the DLL. By direct Entry P…☆235Updated 10 years ago
- The ultimate hooking library☆270Updated 4 years ago
- windows syscall table from xp ~ 10 rs4☆353Updated 7 years ago
- Windows registry file format specification☆341Updated 6 years ago
- Labeless is a multipurpose IDA Pro plugin system for labels/comments synchronization with a debugger backend, with complex memory dumping…☆557Updated 6 months ago
- x86 Inline hooking engine (using trampolines)☆98Updated 10 years ago
- Virtualbox, VirtualMachine, Cuckoo, Anubis, ThreatExpert, Sandboxie, QEMU, Analysis Tools Detection Tools☆456Updated 6 years ago
- Drltrace is a library calls tracer for Windows and Linux applications.☆403Updated 4 years ago
- IDA Pro script to add some useful runtime info to static analysis☆529Updated 2 years ago
- A set of tutorials about code injection for Windows.☆312Updated 11 months ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆436Updated 6 years ago
- YaCo is an Hex-Rays IDA plugin. When enabled, multiple users can work simultaneously on the same binary. Any modification done by any use…☆325Updated 5 years ago
- ☆242Updated 10 years ago
- Consonance, a dark color scheme for IDA.☆264Updated 12 years ago
- Principled, lightweight C/C++ PE parser☆856Updated 8 months ago
- WinAppDbg Debugger☆471Updated this week
- Basically a script thrift shop☆589Updated 2 years ago
- ATrace is a tool for tracing execution of binaries on Windows.☆239Updated 8 years ago
- Windows XP 32-Bit Bootkit☆145Updated 10 years ago
- Print compiler information stored in Rich Header of PE executables.☆138Updated last week
- Samples of binary with different formats and architectures. A test suite for your binary analysis tools.☆260Updated 6 years ago