sventek-s

followers

following

stars

sventek-s's starred repositories

Detours

Detours is a software package for monitoring and instrumenting API calls on Windows. It is distributed in source code form.

Language:C++MIT507000

SourceSync

Set of plugins and library for dynamic pdb generation and synchronisation

Language:C++Apache-2.03000

oleviewdotnet

A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container

Language:C#GPL-3.0108900

bap

Binary Analysis Platform

Language:OCamlMIT203200

windows-syscalls

Windows System Call Tables (NT/2000/XP/2003/Vista/7/8/10/11)

Language:HTML207500

PESD-Exporter-Extension

PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams

Language:HTMLApache-2.09400

WinObjEx64

Windows Object Explorer 64-bit

Language:CBSD-2-Clause160000

WindowsInternals

Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book

8000

dnSpy

Unofficial revival of the well known .NET debugger and assembly editor, dnSpy

Language:C#GPL-3.0636600

ILSpy

.NET Decompiler with support for PDB generation, ReadyToRun, Metadata (&more) - cross-platform!

Language:C#2095800

WinDbg_Scripts

Useful scripts for WinDbg using the debugger data model

Language:JavaScript38100

cet-research

A collection of tools, source code, and papers researching Windows' implementation of CET.

Language:C7000

IoRingReadWritePrimitive

Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2

Language:C++MIT21700

EagleVM

Native code virtualizer for x64 binaries

Language:C++GPL-3.032000

Sark

IDAPython Made Easy

Language:PythonMIT64400

pySymProxy

An implementation of a Microsoft Symbol Proxy server using Python

Language:PythonMIT3800

ida-minsc

A plugin based on IDAPython for a functional DWIM interface. Current development against most recent IDA is in the "persistence-refactor" branch, ancient (but stable) work is in "master", so... create an issue if you want/need something backported. Use "Wiki" or "Discussions" for examples, and smash that "Star" button if you like this.

Language:PythonBSD-3-Clause31000

BasicWXAMFuzzer

Language:C++3500

jswd

javascript extension of windbg for hacker.

Language:C++GPL-3.01400

cfexplode

Automatically exported from code.google.com/p/cfexplode

Language:Java400

QuickAsm

Simple x86/x64 Assembler/Disassembler/Emulator

Language:C++MIT15600

Proxy-DLL-Loads

A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.

Language:CMIT30900

llil_transpiler

transpile llil to c++ for execution and testing

Language:C++MIT4100

A-Walk-Through-x86

Best way to learn x86 is by hacking it

Language:Assembly2500

raddebugger

A native, user-mode, multi-process, graphical debugger.

Language:CMIT316200

rp-bf.rs

rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump

Language:RustMIT11100

rex

Shellphish's automated exploitation engine, originally created for the Cyber Grand Challenge.

Language:PythonBSD-2-Clause62700

ArbitraryDirectoryDeletion

From directory deletion to SYSTEM shell

Language:C++10600

defcon_27_windbg_workshop

DEFCON 27 workshop - Modern Debugging with WinDbg Preview

Language:Python69600

Win-Debloat-Tools

Re-imagining Windows like a minimal OS install, already debloated with minimal impact for most functionality.

Language:PowerShellMIT494100