BehroozAbbassi / DriverAnalyzerLinks
A static analysis tool that helps security researchers scan a list of Windows kernel drivers for common vulnerability patterns in drivers (CVE makers!)
☆70Updated 3 years ago
Alternatives and similar repositories for DriverAnalyzer
Users that are interested in DriverAnalyzer are comparing it to the libraries listed below
Sorting:
- Helper idapython code for reversing kmdf drivers☆74Updated 3 years ago
- ☆41Updated 4 years ago
- ☆47Updated 5 years ago
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆99Updated 5 years ago
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆73Updated 2 years ago
- Command like tool to print mitigation flags for running processes in a memory dump☆47Updated 5 years ago
- ☆24Updated 4 years ago
- This utility allows you to lock every available memory regions of an arbitrary process into its working set.☆70Updated 2 years ago
- Windbg2ida lets you dump each step in Windbg then shows these steps in IDA☆74Updated last year
- A fast execution trace symbolizer for Windows.☆131Updated last year
- ☆11Updated 3 years ago
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆57Updated 5 years ago
- clone of armadillo patched for windows☆47Updated 10 months ago
- A collection of tools, source code, and papers researching Windows' implementation of CET.☆85Updated 4 years ago
- CVE-2021-29337 - Privilege Escalation in MODAPI.sys (MSI Dragon Center)☆30Updated 3 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆106Updated 5 years ago
- ☆90Updated 4 years ago
- This repository contains D-TIME: Distributed Threadless Independent Malware Execution for Runtime Obfuscation.☆37Updated 4 years ago
- Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.☆50Updated 5 years ago
- ☆13Updated 2 years ago
- ☆147Updated 2 years ago
- IDA script for vmprotect Windows Api address decoder☆51Updated 4 years ago
- Helper script for Windows kernel debugging with IDA Pro on native Bochs debugger (including PDB symbols)☆62Updated 2 years ago
- ☆12Updated 5 years ago
- Slides from various conference talks☆37Updated 2 years ago
- ☆30Updated 4 years ago
- arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system☆57Updated 3 years ago
- CVE-2020-0890 | Windows Hyper-V Denial of Service Vulnerability proof-of-concept code☆37Updated 5 years ago
- An experimental dynamic malware unpacker based on Intel Pin and PE-sieve☆62Updated last year
- Example for PagedOut!☆25Updated 5 years ago