WinDBG Anti-RootKit Extension
-
Updated
Jul 29, 2020 - C++
WinDBG Anti-RootKit Extension
kHypervisor is a lightweight bluepill-like nested VMM for Windows, it provides and emulating a basic function of Intel VT-x
A Windows kernel dump C++ parser library with Python 3 bindings.
Small PoC of using a Microsoft signed executable as a lolbin.
reverse engineering extension plugin for windbg
WinDbg debugger extension library providing various tools to analyse, dump and fix (restore) Microsoft Portable Executable files for both 32 (PE) and 64-bit (PE+) platforms.
A proof of concept demonstrating communication via mapped shared memory structures between a user-mode process and a kernel-mode payload on Windows 10 20H2.
Debugger extension for the Debugging Tools for Windows (WinDbg, KD, CDB, NTSD).
XDV is disassembler or debugger that works based on the extension plugin.
Just another tool to download specify Symbol (.pdb) files
Windbg extension that allows you analyze Control Flow Guard map
javascript extension of windbg for hacker.
Basic experimentation with Windows drivers.
Reverse engineering write-up of an application containing an encrypted message.
Add a description, image, and links to the windbg topic page so that developers can more easily learn about it.
To associate your repository with the windbg topic, visit your repo's landing page and select "manage topics."