3intermute / hvICELinks
hypervisor enforced patch protection for the linux kernel with xen + libvmi, libvmi KASLR offset spoofer
☆33Updated last year
Alternatives and similar repositories for hvICE
Users that are interested in hvICE are comparing it to the libraries listed below
Sorting:
- AMD SVM hypervisor rootkit proof of concept☆48Updated last year
- Python bindings for BochsCPU☆37Updated 2 months ago
- ☆47Updated 5 years ago
- Binary Ninja plugin to perform automated analysis of Windows drivers☆17Updated 5 years ago
- SPI flash read MitM attack PoC☆38Updated 3 years ago
- ☆21Updated 4 years ago
- PEIM (UEFI) bootkit targeting OVMF (EDK2)☆35Updated last year
- A collection of tools, source code, and papers researching Windows' implementation of CET.☆84Updated 4 years ago
- Abusing exceptions for code execution.☆111Updated 2 years ago
- ☆43Updated 3 years ago
- Extract data of TTD trace file to a minidump☆30Updated 2 years ago
- Playing with LLVM passes☆36Updated last year
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆73Updated last year
- A KISS Rust crate to parse Windows kernel crash-dumps created by Windows & its debugger.☆37Updated 5 months ago
- clone of armadillo patched for windows☆47Updated 9 months ago
- Hyper-V related resources☆31Updated last year
- short crackme for Windows XP SP3 (32 bit version). ring0 stuff. IMO very fun x-)☆23Updated last year
- ☆40Updated 4 years ago
- This master thesis project continuously collects and analyses Microsoft Windows kernel drivers using static and dynamic methods to help s…☆21Updated 8 months ago
- ☆25Updated 2 months ago
- LLVM obfuscation pass, flattening at the basic block's level and turning each basic block into a dispacher and each instruction into a ne…☆47Updated 3 years ago
- Template for UEFI runtime drivers written in Rust with serial logging and debugging support.☆60Updated 4 years ago
- IntroVirt is an guest introspection library for KVM☆54Updated 10 months ago
- A code parser for C-Style header files that lets you to parse function's prototypes and data types used in their parameters.☆94Updated 3 years ago
- A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).☆29Updated 3 years ago
- A driver to implement IOCTL hooking☆24Updated 3 years ago
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆26Updated last year
- Breaking Secure Boot with SMM☆41Updated 3 years ago
- A research project about Windows notify routines.☆37Updated 5 years ago
- ☆29Updated 4 years ago