BehroozAbbassi / DriverAnalyzer

Related projects ⓘ

Alternatives and complementary repositories for DriverAnalyzer

• bluefrostsecurity / Meltdown-KVA-Shadow-Leak
  ☆44Updated 4 years ago
• JaanusKaapPublic / BlogHyperV
  Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/
  ☆54Updated 4 years ago
• saweol / vwaad
  IDA script for vmprotect Windows Api address decoder
  ☆51Updated 3 years ago
• Fare9 / Genaytyk-VM
  My notes about Genyatyk VM crackme
  ☆27Updated 4 years ago
• BehroozAbbassi / VmwpMonitor
  ☆39Updated 3 years ago
• 0vercl0k / symbolizer
  A fast execution trace symbolizer for Windows.
  ☆130Updated 6 months ago
• quarkslab / whvp
  PoC for a snapshot-based coverage-guided fuzzer targeting Windows kernel components
  ☆68Updated 3 years ago
• benoitsevens / applying-ttd-to-malware-analysis
  Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019
  ☆39Updated 5 years ago
• redplait / armpatched
  clone of armadillo patched for windows
  ☆46Updated last month
• vp777 / exploit-dev
  ☆10Updated 2 years ago
• 4B5F5F4B / HyperV
  PoC for CVE-2017-0075
  ☆36Updated 5 years ago
• k0keoyo / SegmentHeapExt
  ☆38Updated 4 years ago
• synacktiv / vmx_intrinsics
  VMX intrinsics plugin for Hex-Rays decompiler
  ☆70Updated 5 years ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆69Updated last year
• jackullrich / Windows-API-Fuzzer
  Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.
  ☆94Updated 4 years ago
• yardenshafir / KernelDataStructureFinder
  Driver and WinDBG scripts to dump information about all resources and lookaside lists
  ☆66Updated 4 years ago
• 0vercl0k / lockmem
  This utility allows you to lock every available memory regions of an arbitrary process into its working set.
  ☆66Updated last year
• gerhart01 / hyperv_local_dos_poc
  CVE-2020-0890 | Windows Hyper-V Denial of Service Vulnerability proof-of-concept code
  ☆36Updated 4 years ago
• SinaKarvandi / windbg2ida
  Windbg2ida lets you dump each step in Windbg then shows these steps in IDA
  ☆73Updated 4 months ago
• progmboy / win32kext
  windbg plugin for win32k debugging
  ☆72Updated 5 years ago
• IOActive / kmdf_re
  Helper idapython code for reversing kmdf drivers
  ☆67Updated 2 years ago
• fdfalcon / TypeIsolationDbg
  A little WinDbg extension to help dump the state of Win32k Type Isolation structures.
  ☆38Updated 6 years ago
• tenable / mIDA
  ☆33Updated last year
• yardenshafir / MitigationFlagsCliTool
  Command like tool to print mitigation flags for running processes in a memory dump
  ☆44Updated 4 years ago
• piotrflorczyk / cve-2018-8174_analysis
  Analysis of VBS exploit CVE-2018-8174
  ☆30Updated 6 years ago
• tandasat / tandasat.github.io
  ☆19Updated 2 weeks ago
• SinaKarvandi / x64-Driver-Inline-Assembly
  This is a simple driver with x64 inline assembly
  ☆53Updated 4 years ago
• DownWithUp / DynamicKernelShellcode
  An example of how x64 kernel shellcode can dynamically find and use APIs
  ☆103Updated 4 years ago
• mathisvickie / CVE-2021-21551
  arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system
  ☆53Updated 3 years ago