D4stiny / ExceptionOrientedProgramming

Related projects ⓘ

Alternatives and complementary repositories for ExceptionOrientedProgramming

• VoidSec / ioctlpus
  IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).
  ☆84Updated 2 years ago
• Signal-Labs / IOCTLDump
  ☆131Updated last year
• tandasat / hvext
  The Windbg extension that implements commands helpful to study Hyper-V on Intel processors.
  ☆129Updated 3 weeks ago
• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆114Updated 2 months ago
• yardenshafir / IoRingReadWritePrimitive
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆221Updated 2 years ago
• gabriellandau / ShadowStackWalk
  Finding Truth in the Shadows
  ☆84Updated last year
• jk45054 / CTF-writeups
  Writeups for CTF challenges
  ☆30Updated 11 months ago
• 0vercl0k / snapshot
  WinDbg extension written in Rust to dump the CPU / memory state of a running VM
  ☆111Updated this week
• jonaslyk / temp
  ☆65Updated last year
• p0dalirius / pdbdownload
  A Python script to download PDB files associated with a Portable Executable (PE)
  ☆115Updated 3 months ago
• 0vercl0k / rp-bf.rs
  rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump
  ☆111Updated 6 months ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆69Updated last year
• zeze-zeze / ioctlance
  A tool that is used to hunt vulnerabilities in x64 WDM drivers
  ☆163Updated 10 months ago
• therealdreg / cagrackme
  short crackme for Windows XP SP3 (32 bit version). ring0 stuff. IMO very fun x-)
  ☆23Updated last year
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆236Updated 2 years ago
• tandasat / CVE-2023-36427
  Report and exploit of CVE-2023-36427
  ☆87Updated 11 months ago
• kkent030315 / NtSymbol
  Resolve DOS MZ executable symbols at runtime
  ☆93Updated 2 years ago
• ThatLing / limba
  compile-time control flow obfuscation using mba
  ☆174Updated last year
• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆180Updated last week
• rad9800 / VehApiResolve
  ☆98Updated 2 years ago
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆121Updated 2 years ago
• kkent030315 / Van1338
  A journal for $6,000 Riot Vanguard bounty.
  ☆57Updated last year
• ioncodes / ceload
  BYOVD: Loading dbk64.sys and grabbing a handle to it
  ☆149Updated 2 years ago
• am0nsec / wkpe
  Windows Kernel Programming Experiments
  ☆78Updated 2 years ago
• carlos-al / user-kernel-syscall-hook
  ☆80Updated 5 months ago
• BehroozAbbassi / sdkffi
  A code parser for C-Style header files that lets you to parse function's prototypes and data types used in their parameters.
  ☆93Updated 2 years ago
• connormcgarr / EATGuard
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆92Updated last year
• riskydissonance / SyscallsExample
  Simple project using syscalls (via Syswhispers2) to execute MessageBox shellcode.
  ☆73Updated 2 years ago
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆52Updated 6 months ago