https://github.com/therealdreg/ringstepper

windbg plugin easy-step from user code to kernel code
https://github.com/therealdreg/ringstepper

debugger-extension engextcpp helper kernel-debugging plugin windbg-extension windows-kernel x86-64

Last synced: 10 months ago
JSON representation

windbg plugin easy-step from user code to kernel code

• Host: GitHub
• URL: https://github.com/therealdreg/ringstepper
• Owner: therealdreg
• License: mit
• Created: 2020-10-05T08:24:11.000Z (over 5 years ago)
• Default Branch: main
• Last Pushed: 2023-08-11T06:21:37.000Z (over 2 years ago)
• Last Synced: 2025-03-24T07:13:32.628Z (10 months ago)
• Topics: debugger-extension, engextcpp, helper, kernel-debugging, plugin, windbg-extension, windows-kernel, x86-64
• Language: C
• Homepage: https://rootkit.es/
• Size: 272 KB
• Stars: 6
• Watchers: 3
• Forks: 4
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • Funding: .github/FUNDING.yml
  • License: LICENSE

Awesome Lists containing this project

README

          
Please, consider make a donation: https://github.com/sponsors/therealdreg

# ringstepper

Windbg plugin easy-step from user code to kernel code. 

Helper for ntdll syscall ---> SSDT entry ring0

WARNING: the ugliest code in the world, I have developed this just for my own needs, you can improve the project via PR.

# Youtube video example of usage

https://www.youtube.com/watch?v=HgIprxnNWa8