Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

https://github.com/anhkgg/awesome-windbg-extensions

awesome windbg extensions
https://github.com/anhkgg/awesome-windbg-extensions

List: awesome-windbg-extensions

Last synced: 3 months ago
JSON representation

awesome windbg extensions

Lists

README 

        
# awesome-windbg-extensions



# extensions



[wdbgark](https://github.com/swwwolf/wdbgark) - WinDBG Anti-RootKit Extension [https://sww-it.ru](https://sww-it.ru)



[MEX](https://github.com/REhints/WinDbg/tree/master/MEX) - [Mex External](https://www.microsoft.com/en-us/download/details.aspx?id=53304) - MEX Debugging Extension for WinDbg can help you simplify common debugger tasks, and provides powerful text filtering capabilities to the debugger.



1. [http://www.cnblogs.com/tianqing/p/9369693.html](http://www.cnblogs.com/tianqing/p/9369693.html)



[SwishDbgExt](https://github.com/comaeio/SwishDbgExt) - Incident Response & Digital Forensics Debugging Extension [https://www.comae.com](https://www.comae.com)



[DBGkit](http://www.andreybazhan.com/dbgkit.html) - DbgKit is the first GUI extension for Debugging Tools for Windows (WinDbg, KD, CDB, NTSD). [download](http://www.andreybazhan.com/download/DbgKit.zip)



[Patterns Debugger Extension DLL](http://www.patterndiagnostics.com/patterns-extension) - Patterns Debugger Extension DLL. [download](http://www.patterndiagnostics.com/files/patterns.zip)



[poolinfo](https://github.com/fishstiqz/poolinfo) - kernel pool windbg extension



[findpg](https://github.com/tandasat/findpg) - Windbg extension to find PatchGuard pages



[windbg-extensions](https://github.com/goldshtn/windbg-extensions) - Various extensions for WinDbg (tracer, WCT, heap_stat.py, bkb.py, traverse_map.script, traverse_vector.script, cmdtree.txt)



[windbg_hilight](https://github.com/lynnux/windbg_hilight) - A windbg plugin to hilight text in Disassembly and Command windows. Support x86 and x64.



[windbg_to_c](https://github.com/MarkHC/windbg_to_c) - Translates WinDbg "dt" structure dump to a C structure



[pykd](https://githomelab.ru/pykd/pykd) - This project can help to automate debugging and crash dump analysis using Python. It allows one to take the best from both worlds: the expressiveness and convenience of Python with the power of WinDbg!



1. [https://bbs.pediy.com/thread-224904.htm](https://bbs.pediy.com/thread-224904.htm)



[PYKD](https://github.com/WinDbgScripts/PYKD) - This contains Helpful PYKD (Python Extension for Windbg) scripts



[windbg-plugins](https://github.com/sam-b/windbg-plugins) - heap_trace



[0cchext](https://github.com/0cch/0cchext) - 0CCh Windbg extension. (assemble, hwnd, dlsym, bing)



[DbgExt](https://github.com/AndreyBazhan/DbgExt) - Debugger extension for the Debugging Tools for Windows (WinDbg, KD, CDB, NTSD).



[tokenext](https://github.com/long123king/tokenext) - A windbg extension, extracting token related contents



[PyExt](https://github.com/SeanCline/PyExt) - WinDbg Extensions for Python



[Reverse-Engineering-Arsenal](https://github.com/vallejocc/Reverse-Engineering-Arsenal) - Useful Scripts for helping in reverse engeenering



[ApiMon](https://github.com/OsandaMalith/ApiMon) - A simple API monitor for Windbg



[win32kext](https://github.com/progmboy/win32kext) - windbg plugin for win32k debugging



[grep](https://github.com/long123king/grep) - Grep-like WinDbg extension



[lldext](https://github.com/lowleveldesign/lldext) - LLD WinDbg extension(injectdll)



[luadbg](https://github.com/0cch/luadbg) - Lua Extension for Windbg



[DebuggingExtensions](https://github.com/chrisnas/DebuggingExtensions) - Host of debugging-related extensions such as post-mortem tools or WinDBG extensions



[scriptext](https://github.com/pstolarz/scriptext) - WinDbg scripting language utilities.



[IDA2Sym](https://github.com/siberas/IDA2Sym) - IDAScript to create Symbol file which can be loaded in WinDbg via AddSyntheticSymbol



[windbg-extensions](https://github.com/kevingosse/windbg-extensions) - Extensions for the new WinDbg



[windbgshark](https://github.com/pcguru34/windbgshark) - Automatically exported from code.google.com/p/windbgshark, Windbgshark: the unified traffic instrumentation tool



# Script



[windbg-trace](https://github.com/evandowning/windbg-trace) - Use WinDBG to trace the Windows API calls of any Portable Executable file



[Windbg-Scripts](https://github.com/lallousx86/Windbg-Scripts) - practical-reverse-engineering



[Windbg2Struct](https://github.com/ajkhoury/Windbg2Struct) - Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure



[windbg2ida](https://github.com/rmadair/windbg2ida) - Import debugging traces from WinDBG into IDA. Color the graph, fill in the value of all the operands, etc.



[Tool-Windbg-Pykd-Scripts](https://github.com/wu-wenxiang/Tool-Windbg-Pykd-Scripts) - Pykd scripts collection for Windbg



[dotNET_WinDBG](https://github.com/Cisco-Talos/dotNET_WinDBG) - This python script is designed to automate .NET analysis with WinDBG. It can be used to analyse a PowerShell script or to unpack a binary packed using a .NET packer.



[pegasus](https://github.com/0a777h/pegasus) - Windbg emulation plugin



[windbgtree](https://github.com/vagnerpilar/windbgtree) - A command tree based on commands and extensions for Windows Kernel Debugging.



[PyDbgEng](https://github.com/walkerfuz/PyDbgEng) - a python wrapper of debug engines on windows, linux or osx, it's only aim to auto fuzzing.



[nl_windbg](https://github.com/saaramar/nl_windbg) - Base library for Windows kernel debugging



[Pybag](https://github.com/dshikashio/Pybag) - CPython module for Windbg's dbgeng plus additional wrappers.



# Javascript Extensions



[windbg-scripts](https://github.com/0vercl0k/windbg-scripts) - A bunch of JavaScript extensions for WinDbg.



[windbg_js_scripts](https://github.com/hugsy/windbg_js_scripts)- Toy scripts for playing with WinDbg JS API



[evalyzer](https://github.com/szimeus/evalyzer) - Using WinDBG to tap into JavaScript and help with deobfuscation and browser exploit detection



# UI



[DbgShell](https://github.com/Microsoft/DbgShell) - A PowerShell front-end for the Windows debugger engine. [download](https://aka.ms/dbgshell-latest)



[voltron](https://github.com/snare/voltron) - A hacky debugger UI for hackers



[TWindbg](https://github.com/bruce30262/TWindbg) - PEDA-like debugger UI for WinDbg



[WinDbgX](https://github.com/zodiacon/WinDbgX) - An attempt to create a friendly version of WinDbg



[WinDBG-DarkTheme](https://github.com/Stolas/WinDBG-DarkTheme) - A dark theme for WinDBG.



# other



[WinDbgCheatSheet](https://github.com/davidfowl/WinDbgCheatSheet) - This is a cheat sheet for windbg



[DbgSymGrabber](https://github.com/quangnh89/DbgSymGrabber) - Just another tool to download specify Symbol (.pdb) files



[MemoScope.Net](https://github.com/fremag/MemoScope.Net) - Dump and analyze .Net applications memory ( a gui for WinDbg and ClrMd )



[exploit_generator](https://github.com/theevilbit/exploit_generator) - Automated Exploit generation with WinDBG



[windbglib](https://github.com/corelan/windbglib)- Public repository for windbglib, a wrapper around pykd.pyd (for Windbg), used by mona.py



[WinDbg-Samples](https://github.com/Microsoft/WinDbg-Samples) - Sample extensions, scripts, and API uses for WinDbg.



[windbg](https://github.com/pccq2002/windbg) - windbg open source



[WinObjEx64](https://github.com/hfiref0x/WinObjEx64)



[ret-sync](https://github.com/bootleg/ret-sync) - ret-sync is a set of plugins that helps to synchronize a debugging session (WinDbg/GDB/LLDB/OllyDbg2/x64dbg) with IDA disassembler.



[Windows-Driver-Frameworks](https://github.com/Microsoft/Windows-Driver-Frameworks)



[windows-driver-docs](https://github.com/MicrosoftDocs/windows-driver-docs)



# PR



Share the power of everyone.