Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
Projects in Awesome Lists by therealdreg
A curated list of projects in awesome lists by therealdreg .
https://github.com/therealdreg/anticuckoo
A tool to detect and crash Cuckoo Sandbox
anti-sandbox cuckoo-crash cuckoo-detection cuckoo-hooks cuckoo-sandbox hooking windows x86
Last synced: 01 Nov 2024
https://github.com/therealdreg/dbgchild
Debug Child Process Tool (auto attach)
automation child-process debugging-tool hooking ntdll ollydbg reversing standalone windows x64 x64dbg-plugin x86
Last synced: 26 Oct 2024
https://github.com/therealdreg/masm32-kernel-programming
masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)
assembly-x86 driver-programming drivers kernel kernel-programming masm32 windows-kernel
Last synced: 27 Oct 2024
https://github.com/therealdreg/shellex
C-shellcode to hex converter, handy tool for paste & execute shellcodes in IDA PRO, gdb, windbg, radare2, ollydbg, x64dbg, immunity debugger & 010 editor
010editor exploiting gdb hex-converter immunitydebugger linux ollydbg shellcode shellcode-convert shellex windbg windows
Last synced: 27 Oct 2024
https://github.com/therealdreg/enyelkm
LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
hooking kernel-space linux lkm rootkit x86
Last synced: 27 Oct 2024
https://github.com/therealdreg/x64dbg-exploiting
Do you want to use x64dbg instead of immunity debugger? oscp eCPPTv2 buffer overflow exploits pocs
buffer-overflow buffer-overflow-attack buffer-overflow-poc corelan ecpptv2 ecpptv2-study exploit-exercises exploiting exploiting-windows mona oscp oscp-cheatsheet oscp-notes oscp-prep python x64dbg x64dbg-plugin
Last synced: 27 Oct 2024
https://github.com/therealdreg/x86osdev
x86 OS development using Bochs emulator. MIT xv6, JamesM's kernel development tutorials (with some changes) & more
bochs kernel kernel-development mit operating-systems osdev x86 xv6 xv6-operating xv6-os
Last synced: 27 Oct 2024
https://github.com/therealdreg/cgaty
Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
call-gates rootikit-arsenal-book rootkit windows x86
Last synced: 27 Oct 2024
https://github.com/therealdreg/hardware_hacking_es
Hardware Hacking ES Comunidad
community comunidad discord discord-server espanol hacking hardware hardware-hacking iot iot-hacking spanish telegram telegram-channel
Last synced: 26 Oct 2024
https://github.com/therealdreg/ida_bochs_windows
Helper script for Windows kernel debugging with IDA Pro on native Bochs debugger (including PDB symbols)
bochs debugging ida-pro idapython instrumentation kernel-debugging osdev pdb reverse-engineering windows
Last synced: 28 Oct 2024
https://github.com/therealdreg/lsrootkit
Rootkit Detector for UNIX
antirootkit forensic-analysis forensics linux rootkit rootkits unix
Last synced: 28 Oct 2024
https://github.com/therealdreg/ida_vmware_windows_gdb
Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
debugging gdb ida-pro idapython kernel-debugging osdev pdb reverse-engineering vmware vmware-workstation windows
Last synced: 28 Oct 2024
https://github.com/therealdreg/okhi
Open Keylogger Hardware Implant - USB & PS2 Keyboards
educational-project esp espressif hacking-tool hardware hardware-hacking implant keylogger open-hardware pentesting pi-pico pico pico-sdk ps2 ps2-keyboard ps2-keyboard-libraries raspberry rp2040 usb usb-hacking
Last synced: 27 Oct 2024
https://github.com/therealdreg/phook
Full DLL Hooking, phrack 65
dll-generator dll-hooking hooking peb-hooking phrack windows x86
Last synced: 28 Oct 2024
https://github.com/therealdreg/xshellex
With xshellex you can paste any kind of c-shellcode strings in x64dbg, ollydbg & immunity debugger
exploiting immunitydebugger ollydbg shellcode-development shellex x64dbg x64dbg-plugin xshellex
Last synced: 28 Oct 2024
https://github.com/therealdreg/linux_kernel_debug_disassemble_ida_vmware
Helper script for Linux kernel disassemble or debugging with IDA Pro on VMware + GDB stub (including some symbols helpers)
debugging disassembly ida-pro idapython-plugin linux-kernel reversing vmware x86 x86-64
Last synced: 28 Oct 2024
https://github.com/therealdreg/bochs_linux_kernel_debugging
Tools for Linux kernel debugging on Bochs (including symbols, native Bochs debugger and IDA PRO)
bochs debugging-tool ida-pro idapython kernel-debugging linux linux-kernel linux-kernel-hacking x86-64
Last synced: 28 Oct 2024
https://github.com/therealdreg/dregate
call gates as stable comunication channel for NT x86 and Linux x86_64
bochs callgates linux-kernel phrack windows-kernel
Last synced: 28 Oct 2024
https://github.com/therealdreg/evilmass_at90usbkey2
evil mass storage *AT90USBKEY2 (poc-malware-tool for offline system)
at90usb1287 at90usbkey atmel-studio avr c embedded-systems fatfs hacktool lufa windows
Last synced: 28 Oct 2024
https://github.com/therealdreg/windbgtocstruct
Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if needed
c debugging-tool python3 struct windbg windows
Last synced: 28 Oct 2024
https://github.com/therealdreg/nasm_linux_x86_64_pure_sharedlib
NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection
assembly library-injection linux linux-library nasm nasm-assembly reflection-library reflective-injection shared-library shellcode x86-64
Last synced: 28 Oct 2024
https://github.com/therealdreg/auxlib
Full reversing of the Microsoft Auxiliary Windows API Library and ported to C
Last synced: 28 Oct 2024
https://github.com/therealdreg/cagrackme
short crackme for Windows XP SP3 (32 bit version). ring0 stuff. IMO very fun x-)
crackme driver internals ring0 windows-kernel x86
Last synced: 12 Oct 2024
https://github.com/therealdreg/grupos_telegram_discord_hacking
Grupos de Telegram y Discord sobre hacking y seguridad informática en español
Last synced: 12 Oct 2024
https://github.com/therealdreg/symseghelper
Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode
bochs ida-pro idapython kernel-debugging pdb windows
Last synced: 12 Oct 2024
https://github.com/therealdreg/emuhookdetector
hook detector using emulation and comparing static with dynamic outputs
capstone-project emulation forensic-analysis hooking hooks linux rootkit-hunter unicorn-emulator
Last synced: 12 Oct 2024
https://github.com/therealdreg/ftdibrick
FTDI bricker just for fun - malware POC+hardware hacking CTF
brick bricker-breaker freebsd ftdi ftdi-232h ftdi-232r ftdi-chip ftdi-devices ftdi-eeprom linux poc windows
Last synced: 28 Oct 2024
https://github.com/therealdreg/win.cerdalux
WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs
32-bit assembler beginner-friendly educational-software hooking malware malware-development malware-research malware-sample masm32 noobs research reversing-challenge virus windows windows-kernel windows-kernel-malware
Last synced: 12 Oct 2024
https://github.com/therealdreg/flashrom_build_windows_x64
Dreg's fork flashrom special edition for Buzzpirat & bus pirate. Windows x64 raiden_debug_spi, ft2232_spi, serprog, buspirate_spi, dediprog, developerbox, pony_spi, usbblaster_spi, pickit2_spi, ch341a_spi, ch347_spi, digilent_spi, stlinkv3_spi, dirtyjtag_spi. x32 build is included.
64bits bus-pirate buspirate buzzpirat ch341a ch347 flashrom ft2232h ft232h windows windows-build x64 x86-32
Last synced: 12 Oct 2024
https://github.com/therealdreg/pdbdump_bochs
Dump PDB Symbols including support for Bochs Debugging Format (with wine support)
bochs debugging instrumentation kernel-debugging linux-support osdev pdb reverse-engineering windows wine
Last synced: 12 Oct 2024
https://github.com/therealdreg/winxpsp2.cermalus
Malware WinXPSP2.Cermalus Windows Kernel Virus
32bit assembler hooking kernel malware malware-sample research virus windows windows-kernel
Last synced: 12 Oct 2024
https://github.com/therealdreg/ptrace_misconfiguration_local_privilege_escalation
ptrace misconfiguration Local Privilege Escalation
linux privilege-escalation-linux ptrace-injection x86 x86-64
Last synced: 12 Oct 2024
https://github.com/therealdreg/msklc-michael-scott-kaplan-blog
MSKLC Michael Scott Kaplan blog
blog keyboard keylogger michael-scott-kaplan msklc unicode windows
Last synced: 12 Oct 2024
https://github.com/therealdreg/python_reverse_shell_detached_background
python reverse shell detached background
Last synced: 12 Oct 2024
https://github.com/therealdreg/lufa-sdcard-mass-storagekeyboard-fatfs-at90usbkey2
lufa-sdcard-mass-storagekeyboard-fatfs-AT90USBKEY2
8bit at90usb1287 at90usbkey atmel-studio avr fatfs lufa mass-storage-device sdcard usb-composite usb-device usb-devices
Last synced: 12 Oct 2024
https://github.com/therealdreg/r2-syscall-printer
I created r2-syscall-printer (radare r2pipe script) because I need now Linux-kernel interface call convention support (x86 & x86_64): %rdi, %rsi, %rdx, %r10, %r8, %r9. Also you can use this tool as standalone-app to print syscall table info
debugging debugging-tool linux-kernel r2pipe radare2 radare2-plugin reverse-engineering standalone-app syscall-table
Last synced: 12 Oct 2024
https://github.com/therealdreg/call_trick_r2pipe
radare2 script to fix disasm with call tricks for strings
debugging debugging-tool r2pipe radare2 reverse-engineering
Last synced: 12 Oct 2024
https://github.com/therealdreg/drx_ptrace_shellcode_injector
drx ptrace shellcode injector
debugging-tool linux ptrace ptrace-injection shellcode-injection x86 x86-64
Last synced: 12 Oct 2024
https://github.com/therealdreg/lldb_reversing
Dreg's setup for lldb reversing. The simplest and easiest possible, without scripting. lldb debugging setup.
debugging debugging-tools freebsd lldb lldb-debugger lldb-frontend lldb-reversing lldb-script lldbinit python reverse-engineering reversing
Last synced: 12 Oct 2024
https://github.com/therealdreg/bochs-bed
Bochs Enhaced Debugger (bochs-bed). A modern console debug experience.
alpha bochs debugger debugging-tool emulator kernel poc x86 x86-64
Last synced: 12 Oct 2024
https://github.com/therealdreg/ringstepper
windbg plugin easy-step from user code to kernel code
debugger-extension engextcpp helper kernel-debugging plugin windbg-extension windows-kernel x86-64
Last synced: 12 Oct 2024
https://github.com/therealdreg/getproclib
Library for Windows Run-Time Dynamic Linking.
Last synced: 12 Oct 2024
https://github.com/therealdreg/bzub.cx-malware-reversing
BZub.CX Malware Reversing
banking-trojan malware reversing tools windows
Last synced: 12 Oct 2024
https://github.com/therealdreg/autobuspirateupgrade
automate bootloader+firmware+update+self_test on bus pirate v3 with arduino and python. Firmware 7.1 bootloader 4.5
arduino automation bootloader bus-pirate firmware hardware hardware-hacking hardware-testing update-tool
Last synced: 12 Oct 2024
https://github.com/therealdreg/at90usbkey2
Original sources and programs for AT90USBKEY2 + own code & patches
at90usb1287 at90usbkey2 avr usb
Last synced: 12 Oct 2024
https://github.com/therealdreg/oldrootkitweb
rootkit.es site
jekyll just-the-docs rootkit-site website
Last synced: 12 Oct 2024
https://github.com/therealdreg/dregs-win64-bochsdbg-build
my own dregs-win64-bochsdbg-build
Last synced: 12 Oct 2024
https://github.com/therealdreg/malwaredev
Comunidad de malware y research (temas ilegales / offtopic = ban)
Last synced: 12 Oct 2024
https://github.com/therealdreg/gdis
GDB plugin to debug instructions mixed with data (GDB-GEF support included)
debugging gdb gdb-extension malware-analysis reverse-engineering shellcode-analysis
Last synced: 12 Oct 2024
https://github.com/therealdreg/at90swuart
Software UART for AVR like AltSoftSerial or NeoICSerial without Arduino layer
Last synced: 12 Oct 2024
https://github.com/therealdreg/openssl_stack_standalone
Standalone and Self-sufficient header in C for openssl stack use
openssl-library self-contained stack standalone
Last synced: 12 Oct 2024