├── .gitattributes ├── .gitignore ├── 3184f7d94093190ea635a1329cf008d9.png ├── 7413e4c17327485fbd79ac1cb7df74db.png ├── ErisDbg.sln ├── ErisDbg ├── Driver.cpp ├── ErisDbg.vcxproj ├── ErisDbg.vcxproj.filters ├── Log.cpp ├── Log.h ├── NtExportFunction.h ├── NtFunction.cpp ├── NtFunction.h ├── PageHook.cpp ├── PageHook.h ├── Perf_counter.h ├── Performance.cpp ├── Performance.h ├── RebuiltDbgSystem │ ├── Dbgkp.cpp │ ├── Dbgkp.h │ ├── Module.cpp │ ├── Module.h │ ├── ObjectType.cpp │ ├── ObjectType.h │ ├── ResetOnceBreakPoint.cpp │ ├── ResetOnceBreakPoint.h │ ├── SearchCode.h │ ├── Struct.h │ ├── dbg.h │ ├── dbgStruct.h │ ├── export.h │ ├── initDbg.cpp │ ├── initDbg.h │ └── peb.h ├── SearchCode.cpp ├── SearchCode.h ├── UtilsVT.cpp ├── UtilsVT.h ├── VTDebug │ ├── BreakPoint.cpp │ ├── BreakPoint.h │ ├── DebugEvent.cpp │ ├── DebugEvent.h │ ├── DebugObject.cpp │ ├── DebugObject.h │ └── ExceptionHandler.cpp ├── VmExitHandler.cpp ├── VmxDefinition.h ├── WinOsVersion │ ├── Win10_18363.hpp │ └── Win10_19045.hpp ├── asm.asm ├── asm.h ├── ept.cpp ├── ept.h ├── ept2.cpp ├── ept2.h ├── hde │ ├── hde64.cpp │ ├── hde64.h │ ├── headers.hpp │ ├── pstdint.h │ └── table64.h ├── ia32_type.h ├── vm.cpp └── vm.h ├── e1d33eb92d9a1bd469420998f0c1ae3f.png └── readme.md /.gitattributes: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/.gitattributes -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/.gitignore -------------------------------------------------------------------------------- /3184f7d94093190ea635a1329cf008d9.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/3184f7d94093190ea635a1329cf008d9.png -------------------------------------------------------------------------------- /7413e4c17327485fbd79ac1cb7df74db.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/7413e4c17327485fbd79ac1cb7df74db.png -------------------------------------------------------------------------------- /ErisDbg.sln: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg.sln -------------------------------------------------------------------------------- /ErisDbg/Driver.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/Driver.cpp -------------------------------------------------------------------------------- /ErisDbg/ErisDbg.vcxproj: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/ErisDbg.vcxproj -------------------------------------------------------------------------------- /ErisDbg/ErisDbg.vcxproj.filters: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/ErisDbg.vcxproj.filters -------------------------------------------------------------------------------- /ErisDbg/Log.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/Log.cpp -------------------------------------------------------------------------------- /ErisDbg/Log.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/Log.h -------------------------------------------------------------------------------- /ErisDbg/NtExportFunction.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/NtExportFunction.h -------------------------------------------------------------------------------- /ErisDbg/NtFunction.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/NtFunction.cpp -------------------------------------------------------------------------------- /ErisDbg/NtFunction.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/NtFunction.h -------------------------------------------------------------------------------- /ErisDbg/PageHook.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/PageHook.cpp -------------------------------------------------------------------------------- /ErisDbg/PageHook.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/PageHook.h -------------------------------------------------------------------------------- /ErisDbg/Perf_counter.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/Perf_counter.h -------------------------------------------------------------------------------- /ErisDbg/Performance.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/Performance.cpp -------------------------------------------------------------------------------- /ErisDbg/Performance.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/Performance.h -------------------------------------------------------------------------------- /ErisDbg/RebuiltDbgSystem/Dbgkp.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/RebuiltDbgSystem/Dbgkp.cpp -------------------------------------------------------------------------------- /ErisDbg/RebuiltDbgSystem/Dbgkp.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/RebuiltDbgSystem/Dbgkp.h -------------------------------------------------------------------------------- /ErisDbg/RebuiltDbgSystem/Module.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/RebuiltDbgSystem/Module.cpp -------------------------------------------------------------------------------- /ErisDbg/RebuiltDbgSystem/Module.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/RebuiltDbgSystem/Module.h -------------------------------------------------------------------------------- /ErisDbg/RebuiltDbgSystem/ObjectType.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/RebuiltDbgSystem/ObjectType.cpp -------------------------------------------------------------------------------- /ErisDbg/RebuiltDbgSystem/ObjectType.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/RebuiltDbgSystem/ObjectType.h -------------------------------------------------------------------------------- /ErisDbg/RebuiltDbgSystem/ResetOnceBreakPoint.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/RebuiltDbgSystem/ResetOnceBreakPoint.cpp -------------------------------------------------------------------------------- /ErisDbg/RebuiltDbgSystem/ResetOnceBreakPoint.h: -------------------------------------------------------------------------------- 1 | #pragma once 2 | #include 3 | 4 | VOID ResetBreakPoint(PEPROCESS Process); -------------------------------------------------------------------------------- /ErisDbg/RebuiltDbgSystem/SearchCode.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/RebuiltDbgSystem/SearchCode.h -------------------------------------------------------------------------------- /ErisDbg/RebuiltDbgSystem/Struct.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/RebuiltDbgSystem/Struct.h -------------------------------------------------------------------------------- /ErisDbg/RebuiltDbgSystem/dbg.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/RebuiltDbgSystem/dbg.h -------------------------------------------------------------------------------- /ErisDbg/RebuiltDbgSystem/dbgStruct.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/RebuiltDbgSystem/dbgStruct.h -------------------------------------------------------------------------------- /ErisDbg/RebuiltDbgSystem/export.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/RebuiltDbgSystem/export.h -------------------------------------------------------------------------------- /ErisDbg/RebuiltDbgSystem/initDbg.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/RebuiltDbgSystem/initDbg.cpp -------------------------------------------------------------------------------- /ErisDbg/RebuiltDbgSystem/initDbg.h: -------------------------------------------------------------------------------- 1 | #pragma once 2 | #include 3 | VOID InitDBG(); -------------------------------------------------------------------------------- /ErisDbg/RebuiltDbgSystem/peb.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/RebuiltDbgSystem/peb.h -------------------------------------------------------------------------------- /ErisDbg/SearchCode.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/SearchCode.cpp -------------------------------------------------------------------------------- /ErisDbg/SearchCode.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/SearchCode.h -------------------------------------------------------------------------------- /ErisDbg/UtilsVT.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/UtilsVT.cpp -------------------------------------------------------------------------------- /ErisDbg/UtilsVT.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/UtilsVT.h -------------------------------------------------------------------------------- /ErisDbg/VTDebug/BreakPoint.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/VTDebug/BreakPoint.cpp -------------------------------------------------------------------------------- /ErisDbg/VTDebug/BreakPoint.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/VTDebug/BreakPoint.h -------------------------------------------------------------------------------- /ErisDbg/VTDebug/DebugEvent.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/VTDebug/DebugEvent.cpp -------------------------------------------------------------------------------- /ErisDbg/VTDebug/DebugEvent.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/VTDebug/DebugEvent.h -------------------------------------------------------------------------------- /ErisDbg/VTDebug/DebugObject.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/VTDebug/DebugObject.cpp -------------------------------------------------------------------------------- /ErisDbg/VTDebug/DebugObject.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/VTDebug/DebugObject.h -------------------------------------------------------------------------------- /ErisDbg/VTDebug/ExceptionHandler.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/VTDebug/ExceptionHandler.cpp -------------------------------------------------------------------------------- /ErisDbg/VmExitHandler.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/VmExitHandler.cpp -------------------------------------------------------------------------------- /ErisDbg/VmxDefinition.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/VmxDefinition.h -------------------------------------------------------------------------------- /ErisDbg/WinOsVersion/Win10_18363.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/WinOsVersion/Win10_18363.hpp -------------------------------------------------------------------------------- /ErisDbg/WinOsVersion/Win10_19045.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/WinOsVersion/Win10_19045.hpp -------------------------------------------------------------------------------- /ErisDbg/asm.asm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/asm.asm -------------------------------------------------------------------------------- /ErisDbg/asm.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/asm.h -------------------------------------------------------------------------------- /ErisDbg/ept.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/ept.cpp -------------------------------------------------------------------------------- /ErisDbg/ept.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/ept.h -------------------------------------------------------------------------------- /ErisDbg/ept2.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/ept2.cpp -------------------------------------------------------------------------------- /ErisDbg/ept2.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/ept2.h -------------------------------------------------------------------------------- /ErisDbg/hde/hde64.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/hde/hde64.cpp -------------------------------------------------------------------------------- /ErisDbg/hde/hde64.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/hde/hde64.h -------------------------------------------------------------------------------- /ErisDbg/hde/headers.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/hde/headers.hpp -------------------------------------------------------------------------------- /ErisDbg/hde/pstdint.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/hde/pstdint.h -------------------------------------------------------------------------------- /ErisDbg/hde/table64.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/hde/table64.h -------------------------------------------------------------------------------- /ErisDbg/ia32_type.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/ia32_type.h -------------------------------------------------------------------------------- /ErisDbg/vm.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/vm.cpp -------------------------------------------------------------------------------- /ErisDbg/vm.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/ErisDbg/vm.h -------------------------------------------------------------------------------- /e1d33eb92d9a1bd469420998f0c1ae3f.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/e1d33eb92d9a1bd469420998f0c1ae3f.png -------------------------------------------------------------------------------- /readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/kkpwn/ErisDbg/HEAD/readme.md --------------------------------------------------------------------------------