Pinned Repositories
Force-Page-Protection
This x64dbg plugin sets the page protection for memory mapped views in scenarios which cause NtProtectVirtualMemory to fail.
Hex-Rays-Deep-Compile
Improves Hex-Rays output through batch decompilation.
MouClassInputInjection
MouClassInputInjection implements a kernel interface for injecting mouse input data packets into the input data stream of HID USB mouse devices.
MouHidInputHook
MouHidInputHook enables users to filter, modify, and inject mouse input data packets into the input data stream of HID USB mouse devices without modifying the mouse device stacks.
Overwatch-Dump-Fix
x64dbg plugin which removes anti-dumping and obfuscation techniques from the popular FPS game Overwatch.
PE-Header-Dump-Utilities
This x64dbg plugin adds several commands for dumping PE header information by address.
Remote-Process-Cookie-for-Windows-7
Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.
Self-Remapping-Code
This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemory.
VivienneVMM
VivienneVMM is a stealthy debugging framework implemented via an Intel VT-x hypervisor.
x64dbg-Anti-Debug-POC
viewing page boundaries of pages with PAGE_NOACCESS protection reveals the presence of x64dbg.
changeofpace's Repositories
changeofpace/VivienneVMM
VivienneVMM is a stealthy debugging framework implemented via an Intel VT-x hypervisor.
changeofpace/Self-Remapping-Code
This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemory.
changeofpace/MouClassInputInjection
MouClassInputInjection implements a kernel interface for injecting mouse input data packets into the input data stream of HID USB mouse devices.
changeofpace/MouHidInputHook
MouHidInputHook enables users to filter, modify, and inject mouse input data packets into the input data stream of HID USB mouse devices without modifying the mouse device stacks.
changeofpace/Overwatch-Dump-Fix
x64dbg plugin which removes anti-dumping and obfuscation techniques from the popular FPS game Overwatch.
changeofpace/Force-Page-Protection
This x64dbg plugin sets the page protection for memory mapped views in scenarios which cause NtProtectVirtualMemory to fail.
changeofpace/Hex-Rays-Deep-Compile
Improves Hex-Rays output through batch decompilation.
changeofpace/PE-Header-Dump-Utilities
This x64dbg plugin adds several commands for dumping PE header information by address.
changeofpace/x64dbg-Anti-Debug-POC
viewing page boundaries of pages with PAGE_NOACCESS protection reveals the presence of x64dbg.
changeofpace/Remote-Process-Cookie-for-Windows-7
Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.
changeofpace/Simple-Injector
basic dll injector using Qt
changeofpace/Find-Exported-Xrefs
Given a global name in IDA Pro, find all xrefs which are contained in an exported function.
changeofpace/Enumerate-GetKeyState-Calls-Using-Varying-nVirtKey
IDAPython script. Bookmark all instances of calls to GetAsyncKeyState and GetKeyState which use a varying value (e.g. not const shift/ctrl/alt modifiers) for the nVirtKey arg.
changeofpace/ReClassEx
ReClassEx
changeofpace/cheat-engine
Cheat Engine. A development environment focused on modding
changeofpace/HyperPlatform
Intel VT-x based hypervisor aiming to provide a thin VM-exit filtering platform on Windows.
changeofpace/x64dbg
An open-source x64/x32 debugger for windows.