windbg

There are 22 repositories under windbg topic.

• snare / voltron

  A hacky debugger UI for hackers

  debuggergdblldbpythonvoltronvtracewindbg
  Language:Python 6229

• alphaSeclab / awesome-reverse-engineering

  Reverse Engineering Resources About All Platforms(Windows/Linux/macOS/Android/iOS/IoT) And Every Aspect! (More than 3500 open source tools and 2300 posts&videos)

  android-securityangrapk-analysisbinaryninjabinnavicuckoodynamoriofridagdbghidraida-pluginidaproidapythonintelptradare2reverse-engineeringwindbgx64dbg
  4612
• WinObjEx64

  hfiref0x / WinObjEx64

  Windows Object Explorer 64-bit

  cobjects-namespacewindbgwinobj
  Language:C 1713

• daem0nc0re / PrivFu

  Kernel mode WinDbg extension and PoCs for token privilege investigation.

  windbgwindbg-extensionwindowswindows-kernel
  Language:C# 839

• hugsy / defcon_27_windbg_workshop

  DEFCON 27 workshop - Modern Debugging with WinDbg Preview

  debuggingwindbgwindbg-scriptswindbgxwindows
  Language:Python 718

• fremag / MemoScope.Net

  Dump and analyze .Net applications memory ( a gui for WinDbg and ClrMd )

  memory-leakmemoryleaksdeadlock-detectiondumpclrmddotnetwindbg
  Language:C# 693

• microsoft / DbgShell

  A PowerShell front-end for the Windows debugger engine.

  debuggerdebugger-extensiondebuggingwindbg
  Language:C# 680

• swwwolf / wdbgark

  WinDBG Anti-RootKit Extension

  kernel-modec-plus-plusmalwaremalware-analysismalware-researchforensic-analysiswindbgwindbg-extensionanti-rootkitwindowsvisual-studiodriverwdbgarkmemory-forensicsanomaly-detectionuser-modeswwdebugging-toolswwwolfcrash-dump
  Language:C++ 629

• Dynatrace / superdump

  A service for automated crash-dump analysis

  coredumpcrash-dumpdebugdiagdebuggingdebugging-tooldotnetdump-analysistoolwindbg
  Language:C# 522

• Cr4sh / openreil

  Open source library that implements translator and tools for REIL (Reverse Engineering Intermediate Language)

  code-analysiscode-translationdebugginggdbidaproof-of-conceptreilreversingwindbg
  Language:C 503

• stonedreamforest / Mirage

  kernel-mode Anti-Anti-Debug plugin. based on intel vt-x && ept technology

  intelvt-xeptdriverwindowsanti-anti-debugx86x64x64dbgx32dbghookkernel-hookwindbgcutterghidra
  435

• KelvinMsft / kHypervisor

  kHypervisor is a lightweight bluepill-like nested VMM for Windows, it provides and emulating a basic function of Intel VT-x

  hyperplatformkernelnested-virtualizationvcpusvirtualizationvirtualization-based-securityvm-entry-emulationvt-xwindbgwindows-kernel
  Language:C++ 423
• windbg-cheat-sheet

  repnz / windbg-cheat-sheet

  My personal cheat sheet for using WinDbg for kernel debugging

  windbgkerneldebuggingcheatsheetcheat-sheetguide
  Language:JavaScript 409

• yardenshafir / WinDbg_Scripts

  Useful scripts for WinDbg using the debugger data model

  debugginglinqwindbgwindbg-scriptswindows
  Language:JavaScript 405

• Faran-17 / Windows-Internals

  Important notes and topics on my journey towards mastering Windows Internals

  cppwindbgwindows
  Language:C++ 367

• lowleveldesign / debug-recipes

  My notes on software troubleshooting, covering debugging and tracing techniques and tools. Available at wtrace.net.

  debuggingetwprofilingwindbg
  Language:HTML 331

• 0vercl0k / windbg-scripts

  A bunch of JavaScript extensions for WinDbg.

  javascriptwindbg
  Language:JavaScript 330

• hugsy / windbg_js_scripts

  Toy scripts for playing with WinDbg JS API

  debuggingjavascriptwindbgwindbg-previewwindbg-scripts
  Language:JavaScript 225

• chrisnas / DebuggingExtensions

  Host of debugging-related extensions such as post-mortem tools or WinDBG extensions

  clrmdwindbg-extensionwindbgthreadpooltimergarbage-collectorsos
  Language:C# 215

• bruce30262 / TWindbg

  PEDA-like debugger UI for WinDbg

  windbgwindbg-extensionpythondebuggerpykd
  Language:Python 202

• 0vercl0k / kdmp-parser

  A Windows kernel dump C++ parser library with Python 3 bindings.

  kernel-dumpdmpbitmap-dumpfull-dumppython3dumpswindbg
  Language:C++ 197

• vallejocc / Reverse-Engineering-Arsenal

  Useful Scripts for helping in reverse engeenering

  windbgscriptsida-plugin
  Language:Python 179

• tandasat / hvext

  The Windbg extensions to study Hyper-V on Intel and AMD processors.

  hyper-vvt-xwindbgsvm
  Language:JavaScript 152
• lolbin-poc

  mrexodia / lolbin-poc

  Small PoC of using a Microsoft signed executable as a lolbin.

  edr-bypassmalwarepocredteamredteam-toolsredteamingwindbgwindbg-extension
  Language:C++ 136

• imugee / pegasus

  reverse engineering extension plugin for windbg

  debuggingemulationreverse-engineeringreversingwindbgwindbg-extension
  Language:C++ 115

• therealdreg / shellex

  C-shellcode to hex converter, handy tool for paste & execute shellcodes in IDA PRO, gdb, windbg, radare2, ollydbg, x64dbg, immunity debugger & 010 editor

  shellcodeshellcode-convertlinuxwindowsexploitingwindbgimmunitydebuggerollydbggdb010editorhex-convertershellex
  Language:C 115
• snapshot

  0vercl0k / snapshot

  WinDbg extension written in Rust to dump the CPU / memory state of a running VM

  rustrust-langsnapshot-fuzzerwindbg
  Language:Rust 113

• 0cch / 0cchext

  0CCh Windbg extension: include some useful commands

  windbgdebuggertrace0cch-windbg-extension
  Language:C 110

• vagnerpilar / windbgtree

  A command tree based on commands and extensions for Windows Kernel Debugging.

  windowsinternalskerneldebuggingwindbg-extensionwindbgdebugextensions
  107

• kevingosse / windbg-extensions

  Extensions for the new WinDbg

  windbgwindbg-extension
  Language:HTML 99

• southpolenator / SharpDebug

  C# debugging automation tool

  clrcoredumpdump-analysisdump-processingdumpsdwarfelfnugetvisualstudiowindbgwindbg-extension
  Language:C# 94

• pstolarz / dumpext

  WinDbg debugger extension library providing various tools to analyse, dump and fix (restore) Microsoft Portable Executable files for both 32 (PE) and 64-bit (PE+) platforms.

  windbgreverse-engineeringextensionpe32debugprotectionpackeriatrvaunpackdebuggerreverse-engineersresource-treeiat-scanning
  Language:C++ 82

• SeanCline / PyExt

  WinDbg Extensions for Python

  pythonwindbgcdbdebugging-tool
  Language:C++ 82

• wangray / WinDBG-for-GDB-users

  "Pwntools does not support Windows. Use a real OS ;)" — Zach Riggle, 2015

  commandscommands-cheat-sheetdebugginggdblinuxwindbgwindows
  82

• progmboy / win32kext

  windbg plugin for win32k debugging

  kernelpluginwin32kwindbg
  Language:C++ 73

• dmaivel / ntoseye

  Windows kernel debugger for Linux hosts running Windows under KVM/QEMU

  gdbkernel-debuggerkvmlinuxntosntoskrnlpdbqemuqemu-kvmwindbgwindowsdisassemblerintrospectionlldbllvmmemorylua
  Language:C++ 70