windbg

There are 21 repositories under windbg topic.

snare / voltron
A hacky debugger UI for hackers
debugger gdb lldb python voltron vtrace windbg
Language:Python 6182
alphaSeclab / awesome-reverse-engineering
Reverse Engineering Resources About All Platforms(Windows/Linux/macOS/Android/iOS/IoT) And Every Aspect! (More than 3500 open source tools and 2300 posts&videos)
android-security angr apk-analysis binaryninja binnavi cuckoo dynamorio frida gdb ghidra ida-plugin idapro idapython intelpt radare2 reverse-engineering windbg x64dbg
4508
WinObjEx64
hfiref0x / WinObjEx64
Windows Object Explorer 64-bit
c objects-namespace windbg winobj
Language:C 1649
daem0nc0re / PrivFu
Kernel mode WinDbg extension and PoCs for token privilege investigation.
windbg windbg-extension windows windows-kernel
Language:C# 816
hugsy / defcon_27_windbg_workshop
DEFCON 27 workshop - Modern Debugging with WinDbg Preview
debugging windbg windbg-scripts windbgx windows
Language:Python 709
fremag / MemoScope.Net
Dump and analyze .Net applications memory ( a gui for WinDbg and ClrMd )
clrmd deadlock-detection dotnet dump leaks memory memory-leak windbg
Language:C# 693
microsoft / DbgShell
A PowerShell front-end for the Windows debugger engine.
debugger debugger-extension debugging windbg
Language:C# 675
swwwolf / wdbgark
WinDBG Anti-RootKit Extension
anomaly-detection anti-rootkit c-plus-plus crash-dump debugging-tool driver forensic-analysis kernel-mode malware malware-analysis malware-research memory-forensics sww swwwolf user-mode visual-studio wdbgark windbg windbg-extension windows
Language:C++ 615
Dynatrace / superdump
A service for automated crash-dump analysis
crash-dump dump-analysis windbg debugging dotnet debugdiag debugging-tool coredump tool
Language:C# 515
Cr4sh / openreil
Open source library that implements translator and tools for REIL (Reverse Engineering Intermediate Language)
reversing code-analysis code-translation debugging gdb ida proof-of-concept reil windbg
Language:C 494
stonedreamforest / Mirage
kernel-mode Anti-Anti-Debug plugin. based on intel vt-x && ept technology
anti-anti-debug cutter driver ept ghidra hook intel kernel-hook vt-x windbg windows x32dbg x64 x64dbg x86
430
KelvinMsft / kHypervisor
kHypervisor is a lightweight bluepill-like nested VMM for Windows, it provides and emulating a basic function of Intel VT-x
nested-virtualization virtualization vt-x windows-kernel kernel windbg hyperplatform vm-entry-emulation vcpus virtualization-based-security
Language:C++ 413
yardenshafir / WinDbg_Scripts
Useful scripts for WinDbg using the debugger data model
debugging linq windbg windbg-scripts windows
Language:JavaScript 389
windbg-cheat-sheet
repnz / windbg-cheat-sheet
My personal cheat sheet for using WinDbg for kernel debugging
cheat-sheet cheatsheet debugging guide kernel windbg
Language:JavaScript 387
Faran-17 / Windows-Internals
Important notes and topics on my journey towards mastering Windows Internals
cpp windbg windows
Language:C++ 339
lowleveldesign / debug-recipes
My notes on software troubleshooting, covering debugging and tracing techniques and tools. Available at wtrace.net.
debugging etw profiling windbg
Language:HTML 330
0vercl0k / windbg-scripts
A bunch of JavaScript extensions for WinDbg.
javascript windbg
Language:JavaScript 320
hugsy / windbg_js_scripts
Toy scripts for playing with WinDbg JS API
debugging javascript windbg windbg-preview windbg-scripts
Language:JavaScript 220
chrisnas / DebuggingExtensions
Host of debugging-related extensions such as post-mortem tools or WinDBG extensions
clrmd windbg-extension windbg threadpool timer garbage-collector sos
Language:C# 215
bruce30262 / TWindbg
PEDA-like debugger UI for WinDbg
debugger pykd python windbg windbg-extension
Language:Python 201
0vercl0k / kdmp-parser
A Windows kernel dump C++ parser library with Python 3 bindings.
bitmap-dump dmp dumps full-dump kernel-dump python3 windbg
Language:C++ 193
vallejocc / Reverse-Engineering-Arsenal
Useful Scripts for helping in reverse engeenering
ida-plugin scripts windbg
Language:Python 182
lolbin-poc
mrexodia / lolbin-poc
Small PoC of using a Microsoft signed executable as a lolbin.
edr-bypass malware poc redteam redteam-tools redteaming windbg windbg-extension
Language:C++ 133
tandasat / hvext
The Windbg extension that implements commands helpful to study Hyper-V on Intel processors.
hyper-v vt-x windbg
Language:JavaScript 130
imugee / pegasus
reverse engineering extension plugin for windbg
debugging emulation reverse-engineering reversing windbg windbg-extension
Language:C++ 115
therealdreg / shellex
C-shellcode to hex converter, handy tool for paste & execute shellcodes in IDA PRO, gdb, windbg, radare2, ollydbg, x64dbg, immunity debugger & 010 editor
010editor exploiting gdb hex-converter immunitydebugger linux ollydbg shellcode shellcode-convert shellex windbg windows
Language:C 114
snapshot
0vercl0k / snapshot
WinDbg extension written in Rust to dump the CPU / memory state of a running VM
rust rust-lang snapshot-fuzzer windbg
Language:Rust 112
0cch / 0cchext
0CCh Windbg extension: include some useful commands
windbg debugger trace 0cch-windbg-extension
Language:C 109
vagnerpilar / windbgtree
A command tree based on commands and extensions for Windows Kernel Debugging.
debug debugging extensions internals kernel windbg windbg-extension windows
105
kevingosse / windbg-extensions
Extensions for the new WinDbg
windbg windbg-extension
Language:HTML 96
southpolenator / SharpDebug
C# debugging automation tool
clr coredump dump-analysis dump-processing dumps dwarf elf nuget visualstudio windbg windbg-extension
Language:C# 92
pstolarz / dumpext
WinDbg debugger extension library providing various tools to analyse, dump and fix (restore) Microsoft Portable Executable files for both 32 (PE) and 64-bit (PE+) platforms.
debug debugger extension iat iat-scanning packer pe32 protection resource-tree reverse-engineering reverse-engineers rva unpack windbg
Language:C++ 81
wangray / WinDBG-for-GDB-users
"Pwntools does not support Windows. Use a real OS ;)" — Zach Riggle, 2015
commands commands-cheat-sheet debugging gdb linux windbg windows
80
SeanCline / PyExt
WinDbg Extensions for Python
python windbg cdb debugging-tool
Language:C++ 79
Deputation / kernel_payload_comms
A proof of concept demonstrating communication via mapped shared memory structures between a user-mode process and a kernel-mode payload on Windows 10 20H2.
kernel payload virtual-memory virtual-machine windbg driver windows-kernel
Language:C++ 74
progmboy / win32kext
windbg plugin for win32k debugging
win32k windbg plugin kernel
Language:C++ 72

windbg

snare / voltron

alphaSeclab / awesome-reverse-engineering

hfiref0x / WinObjEx64

daem0nc0re / PrivFu

hugsy / defcon_27_windbg_workshop

fremag / MemoScope.Net

microsoft / DbgShell

swwwolf / wdbgark

Dynatrace / superdump

Cr4sh / openreil

stonedreamforest / Mirage

KelvinMsft / kHypervisor

yardenshafir / WinDbg_Scripts

repnz / windbg-cheat-sheet

Faran-17 / Windows-Internals

lowleveldesign / debug-recipes

0vercl0k / windbg-scripts

hugsy / windbg_js_scripts

chrisnas / DebuggingExtensions

bruce30262 / TWindbg

0vercl0k / kdmp-parser

vallejocc / Reverse-Engineering-Arsenal

mrexodia / lolbin-poc

tandasat / hvext

imugee / pegasus

therealdreg / shellex

0vercl0k / snapshot

0cch / 0cchext

vagnerpilar / windbgtree

kevingosse / windbg-extensions

southpolenator / SharpDebug

pstolarz / dumpext

wangray / WinDBG-for-GDB-users

SeanCline / PyExt

Deputation / kernel_payload_comms

progmboy / win32kext