• Stars
    star
    107
  • Rank 323,587 (Top 7 %)
  • Language
    HTML
  • License
    MIT License
  • Created almost 9 years ago
  • Updated over 6 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Any useful windbg plugins I've written.

windbg-plugins

Repository for any useful windbg plugins I've written.

#heap_trace Hooks heap operations and tracks their arguments and return values. Run:

.load pykd.pyd
!py "PATH_TO_REPO\heap_trace.py"

This will log to your home directory as log.log. You can then create a villoc visualisation of this by running:

python villoc.py log.log out.html

Example villoc output:
Example #Requirements All plugins use the pykd python interface for windbg.

More Repositories

1

windows_kernel_resources

Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits
330
star
2

HashData

A command line Hash Identifying tool.
Ruby
101
star
3

HackSysDriverExploits

C++
45
star
4

CVE-2014-4113

Trigger and exploit code for CVE-2014-4113
C++
43
star
5

windows_syscalls_dumper

A dirty IDAPython script to dump windows system call number/name pairs as JSON
Python
37
star
6

z3-stuff

z3 scripts and ctf challenge solutions.
Python
24
star
7

pilloc

A pin tool to visualise heap operations
C++
21
star
8

PSOD

A simple Windows driver which crashes the system and turns the BSOD pink
C
18
star
9

ida-scripts

Dumping ground for whatever IDA Pro scripts I write
Python
15
star
10

win-driver-tools

A couple of little tools I've made for working with Windows Drivers
Python
15
star
11

intro-to-kernel-exploitation

C++
7
star
12

recon-ng-bt_lookup

A BT lookup module for recon-ng
Python
7
star
13

littleos

A little os built using the littleosbook
C
6
star
14

SimpleBrowser

A simple browser written in python
Python
3
star
15

sam-b.github.io

Ruby
2
star
16

DataSearch

A simple search engine in python
Python
2
star
17

win_update_permanence_swap

Modifies the permanence field in windows update MUM files to make updates permanent/removable
Python
2
star
18

gchq_can_you_crack_it

A VM implemented in rust for gchqs "Can you crack it?" challenge from 2011
Rust
1
star
19

ctf-stuff

Python
1
star
20

crib-dragger

Asimple script for crib dragging against many-time pads I preiodically use for CTFs
Python
1
star
21

bindiff-python

Binary diffing from python
Python
1
star