Stars
A bunch of JavaScript extensions for WinDbg.
Windows software for sharing locally connected USB devices to other machines, including Hyper-V guests and WSL 2.
Tooling to generate metadata for Win32 APIs in the Windows SDK.
An index of Windows binaries, including download links for executables such as exe, dll and sys files
Set of tools to analyze Windows sandboxes for exposed attack surface. (Maintained V1 branch).
gerhart01 / LiveCloudKd
Forked from msuiche/LiveCloudKdHyper-V Research is trendy now
Python tool to check rootkits in Windows kernel
A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals…
Local OXID Resolver (LCLOR) : Research and Tooling
Canarytokens helps track activity and actions on your network.
woftool is a proof-of-concept utility for creating WOF-compressed files
Enable Microsoft PDB support in Ghidra without installing Visual Studio
Virtual whiteboard for sketching hand-drawn like diagrams
Helper library for x86 programs that runs under WOW64 layer on x64 versions of Microsoft Windows operating systems.
Set of tools to analyze Windows sandboxes for exposed attack surface.
This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System from 7 to Windows 10.
w4kfu / LKD
Forked from sogeti-esec-lab/LKDLocal Kernel Debugger (LKD) is a python wrapper around dbgengine.dll
Hook system calls, context switches, page faults and more.
A rewrite of the old legacy software "depends.exe" in C# for Windows devs to troubleshoot dll load dependencies issues.
Official QEMU mirror. Please see https://www.qemu.org/contribute/ for how to submit changes to QEMU. Pull Requests are ignored. Please only use release tarballs from the QEMU website.
Ghidra is a software reverse engineering (SRE) framework
pdbex is a utility for reconstructing structures and unions from the PDB into compilable C headers