zodiacon / Recon2023
Recon 2023 slides and code
☆79Updated last year
Alternatives and similar repositories for Recon2023:
Users that are interested in Recon2023 are comparing it to the libraries listed below
- masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)☆119Updated last year
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆114Updated 8 months ago
- ☆111Updated 3 weeks ago
- ☆72Updated 8 months ago
- Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book☆105Updated 8 months ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆115Updated last year
- Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)☆97Updated last year
- MalUnpack companion driver☆92Updated 8 months ago
- ☆155Updated 9 months ago
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆112Updated 4 months ago
- ☆70Updated 2 years ago
- Writeups for CTF challenges☆30Updated last year
- A Python script to download PDB files associated with a Portable Executable (PE)☆119Updated last month
- lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.☆103Updated 6 months ago
- How to set up 2 VirtualBox VM to debug kernel driver using windbg☆54Updated 2 years ago
- A collection of modules and scripts to help with analyzing Nim binaries☆70Updated 5 months ago
- A dynamic unpacking tool☆132Updated last year
- Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …☆108Updated 3 years ago
- The Windbg extensions to study Hyper-V on Intel and AMD processors.☆150Updated this week
- ☆97Updated 3 months ago
- This x64dbg plugin allows you to upload your sample to Malcore and view the results.☆33Updated last year
- ☆70Updated last year
- C# Utilities for Windows Notification Facility☆131Updated 3 months ago
- ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…☆115Updated this week
- Finding Truth in the Shadows☆88Updated 2 years ago
- Winbindex bot to pull in binaries for specific releases☆46Updated last year
- Static Binary Instrumentation tool for Windows x64 executables☆198Updated last month
- ☆105Updated 8 months ago
- Batch script to compile a binary shellcode blob into an exe file☆84Updated 5 years ago
- msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.☆149Updated last year