BehroozAbbassi / DriverAnalyzer
A static analysis tool that helps security researchers scan a list of Windows kernel drivers for common vulnerability patterns in drivers (CVE makers!)
☆54Updated 3 years ago
Alternatives and similar repositories for DriverAnalyzer:
Users that are interested in DriverAnalyzer are comparing it to the libraries listed below
- ☆45Updated 4 years ago
- ☆40Updated 3 years ago
- IDA script for vmprotect Windows Api address decoder☆51Updated 3 years ago
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆70Updated last year
- Windbg2ida lets you dump each step in Windbg then shows these steps in IDA☆76Updated 8 months ago
- PoC for CVE-2017-0075☆37Updated 5 years ago
- CVE-2020-0890 | Windows Hyper-V Denial of Service Vulnerability proof-of-concept code☆36Updated 4 years ago
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆97Updated 4 years ago
- Command like tool to print mitigation flags for running processes in a memory dump☆46Updated 4 years ago
- ☆33Updated 3 years ago
- Code-Reuse Exploits detection using Intel Processor Trace☆28Updated 6 years ago
- ☆47Updated 2 years ago
- A fast execution trace symbolizer for Windows.☆130Updated 10 months ago
- Helper idapython code for reversing kmdf drivers☆72Updated 2 years ago
- PoC for a snapshot-based coverage-guided fuzzer targeting Windows kernel components☆68Updated 3 years ago
- My notes about Genyatyk VM crackme☆26Updated 4 years ago
- ☆23Updated 3 years ago
- Course sample for SMT-Based Binary Program Analysis training class☆31Updated 6 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆36Updated 6 years ago
- This utility allows you to lock every available memory regions of an arbitrary process into its working set.☆67Updated last year
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆55Updated 4 years ago
- ☆11Updated 2 years ago
- arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system☆56Updated 3 years ago
- VMX intrinsics plugin for Hex-Rays decompiler☆70Updated 5 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆53Updated 5 years ago
- A little WinDbg extension to help dump the state of Win32k Type Isolation structures.☆38Updated 7 years ago
- ☆39Updated 4 years ago
- Fuzzing Harness for FoxitReader 9.7 ConvertToPDF Function☆14Updated 5 years ago
- A Fuzzer for Windows NDIS Drivers OID Handlers☆93Updated 3 years ago
- Analysis of VBS exploit CVE-2018-8174☆30Updated 6 years ago