DProvinciani / pt-detectorLinks
Code-Reuse Exploits detection using Intel Processor Trace
☆28Updated 7 years ago
Alternatives and similar repositories for pt-detector
Users that are interested in pt-detector are comparing it to the libraries listed below
Sorting:
- AllMemPro☆44Updated 7 years ago
- VMCS Auditor provides almost all of Intel's VMCS Layout checklist based on Bochs Emulator.☆32Updated 6 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆35Updated 11 months ago
- PoC for CVE-2017-0075☆37Updated 5 years ago
- enable libemu run pe file and add some good modify☆14Updated 6 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆67Updated 5 years ago
- Robust API monitoring system presented in the paper "Designing Robust API Monitoring Solutions" (IEEE TDSC)☆24Updated 3 years ago
- windbg plugin for win32k debugging☆75Updated 5 years ago
- Windows sandbox PoC☆31Updated 5 years ago
- 大表哥的Syscall-Monitor☆34Updated 5 years ago
- just an lite AntiRootkit for interesting☆23Updated 9 years ago
- Analyze PatchGuard☆58Updated 6 years ago
- unicorn emulator for x64dbg☆34Updated 7 years ago
- a binary x86win32 code obfuscator using virtual machine☆32Updated 8 years ago
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆58Updated 5 years ago
- ☆27Updated 7 years ago
- A fork of AFL for fuzzing Windows binaries☆53Updated 6 years ago
- An API Monitor based on Instrumentation☆43Updated 7 years ago
- IA32-doc is a project which aims to put as many definitions from the Intel Manual into machine-processable format as possible☆16Updated 3 years ago
- Sample programs that illustrate how to use Control Flow Guard, VS2015's control flow integrity implementation☆51Updated 8 years ago
- A little WinDbg extension to help dump the state of Win32k Type Isolation structures.☆38Updated 7 years ago
- Windows 10 kernel and ntdll internal types, directly compatible with ida.☆51Updated 6 years ago
- Intel Processor Trace package collector for Windows☆18Updated 5 years ago
- ☆24Updated 9 years ago
- IDA 7.0 meets watch view!☆42Updated 3 years ago
- [SmartCom2017] An Effective Malware Detection based on Behaviour and Data Feature☆19Updated 6 years ago
- For Example. See Miro's Blog☆30Updated 2 years ago
- Материалы к статье "Препарируем Hyper V"☆13Updated 10 years ago
- Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.☆24Updated 7 years ago
- win32/x64 obfuscate framework☆32Updated 6 years ago