ASM Bootkit that patches DSE at boot allowing to load unsigned drivers
☆14Aug 24, 2025Updated 6 months ago
Alternatives and similar repositories for DSEclipse
Users that are interested in DSEclipse are comparing it to the libraries listed below
Sorting:
- tenjint is a Python 3-based platform for virtual machine introspection (VMI) on x86 and ARM. This is main Python 3 tenjint library.☆11Feb 9, 2021Updated 5 years ago
- Taking advantage of CRT initialization, to get away with hooking protected applications☆48Nov 2, 2022Updated 3 years ago
- An example code of CiGetCertPublisherName☆17Mar 24, 2022Updated 3 years ago
- A minimalistic way to spoof return addresses without using exceptions☆17Jul 26, 2022Updated 3 years ago
- Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode☆19Aug 11, 2023Updated 2 years ago
- Binary Ninja plugin to perform automated analysis of Windows drivers☆20Aug 8, 2019Updated 6 years ago
- Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in …☆54Dec 30, 2025Updated 2 months ago
- reverse engineering of the windows nt kernel debugger protocol & reimplementation.☆36Jul 2, 2024Updated last year
- ☆25Jan 26, 2016Updated 10 years ago
- ☆31Dec 5, 2024Updated last year
- Cheat for my own game SecureGame which uses a bootkit to hyperjack Hyper-V in order to access VBS enclave's memory☆103Dec 8, 2024Updated last year
- ☆40Mar 23, 2023Updated 2 years ago
- Library to manipulate drivers that expose a physical memory read/write primitive.☆41Sep 4, 2023Updated 2 years ago
- Analyze tool for windows reverser☆31Mar 6, 2023Updated 2 years ago
- Elevate arbitrary MSR writes to kernel execution.☆45Sep 3, 2023Updated 2 years ago
- Zyrox: LLVM based, compile-time obfuscator plugin.☆88Feb 21, 2026Updated last week
- Small tool to convert beteween the PE alignments (raw and virtual).☆111Dec 28, 2022Updated 3 years ago
- ☆20Jul 14, 2025Updated 7 months ago
- Interprocess communication via a covert timing channel☆26Oct 24, 2025Updated 4 months ago
- Exploit POC for CVE-2024-36877☆48Aug 14, 2024Updated last year
- Simple library to enable customized Discord's rich presence (e.g. playing on some server with custom text and icons) for Lineage 2 (may b…☆10Jan 26, 2023Updated 3 years ago
- Memory protection and randomization tests (not limited to PaX enabled kernels)☆12Mar 5, 2024Updated last year
- This is an instruction to run your own SMM code.☆108Mar 8, 2021Updated 4 years ago
- WslinkVMAnalyzer is a tool to facilitate analysis of code protected by a virtual machine featured in Wslink malware☆48Jun 5, 2022Updated 3 years ago
- VSCode extension for the LLVM IR language☆60May 29, 2024Updated last year
- LostArk Internal Cheat Base☆11Nov 23, 2021Updated 4 years ago
- Former UEFI Firmware Rootkit Replicating MoonBounce / ESPECTRE☆11Jun 14, 2022Updated 3 years ago
- Assembly code to use for Windows kernel shellcode to edit winlogon.exe ACL☆13Mar 6, 2017Updated 8 years ago
- NASM listing to shellcode converter☆14May 6, 2018Updated 7 years ago
- A REALLY Danger Windows Driver, Turn Any threads Ring0!☆13Aug 11, 2025Updated 6 months ago
- mash hypervisor host pml4☆17Jun 22, 2022Updated 3 years ago
- Port of Mandiant ShellcodeHashes plugin from IDA to BinaryNinja☆11Jul 24, 2024Updated last year
- Reversed WintaPix Malware Source code | That targets countries in the Middle East and abuse KeServiceDescriptorTable(SSDT), persistence a…☆22Jul 6, 2024Updated last year
- windows内核安全与驱动开发代码☆12Apr 4, 2020Updated 5 years ago
- https://www.youtube.com/watch?v=qsjGj_L1kyo☆10Jul 29, 2021Updated 4 years ago
- A simple C++ driver base with KD data block☆11Jun 25, 2022Updated 3 years ago
- Klara docker compose☆11May 19, 2020Updated 5 years ago
- Simple KDMapper driver dumper. Unlike other dumpers, this dumper dumps the PE headers of the image too.☆16May 10, 2024Updated last year
- EDR PoC WIP LLC☆10Feb 9, 2024Updated 2 years ago