Alternatives and similar repositories for pwn-mbr:

Users that are interested in pwn-mbr are comparing it to the libraries listed below

• ixty / xarch_shellcode
  Cross Architecture Shellcode in C
  ☆200Updated 8 years ago
• IOActive / I-know-where-your-page-lives
  I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016
  ☆163Updated 8 years ago
• bee13oy / AV_Kernel_Vulns
  Pocs for Antivirus Software‘s Kernel Vulnerabilities
  ☆263Updated 7 years ago
• Darkabode / zerokit
  Zerokit/GAPZ rootkit (non buildable and only for researching)
  ☆182Updated 6 years ago
• MalwareTech / TinyXPB
  Windows XP 32-Bit Bootkit
  ☆144Updated 10 years ago
• Cr4sh / PeiBackdoor
  PEI stage backdoor for UEFI compatible firmware
  ☆219Updated 3 years ago
• cryptolok / ASLRay
  Linux ELF x32/x64 ASLR DEP/NX bypass exploit with stack-spraying
  ☆299Updated 2 years ago
• saaramar / execve_exploit
  Hardcore corruption of my execve() vulnerability in WSL
  ☆214Updated 7 years ago
• MortenSchenk / BHUSA2017
  Content from presentation at BHUSA 2017
  ☆180Updated 7 years ago
• elfmaster / skeksi_virus
  Devestating and awesome Linux X86_64 ELF Virus
  ☆227Updated 2 years ago
• clymb3r / KdExploitMe
  A kernel driver to practice writing exploits against, as well as some example exploits using public techniques.
  ☆404Updated 10 years ago
• sensepost / gdi-palettes-exp
  DC25 5A1F - Demystifying Windows Kernel Exploitation by Abusing GDI Objects
  ☆145Updated 7 years ago
• Rootkitsmm-zz / Win32k-Fuzzer
  Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )
  ☆132Updated 9 years ago
• Qubasa / 0pack
  A novel technique to hide code from debuggers & disassemblers
  ☆156Updated 7 months ago
• gpoulios / ROPInjector
  Patching ROP-encoded shellcodes into PEs
  ☆184Updated 7 years ago
• kokjo / universalrop
  Small tool for generating ropchains using unicorn and z3
  ☆197Updated 7 years ago
• can1357 / CVE-2018-8897
  Arbitrary code execution with kernel privileges using CVE-2018-8897.
  ☆410Updated 6 years ago
• gdelugre / shell-factory
  C++-based shellcode builder
  ☆112Updated 4 years ago
• hal3002 / rooty
  libpcap based ICMP encrypted backdoor for linux.
  ☆130Updated 4 years ago
• schumilo / vUSBf
  ☆163Updated 8 years ago
• tinysec / windows-syscall-table
  windows syscall table from xp ~ 10 rs4
  ☆353Updated 6 years ago
• salls / kernel-exploits
  Some kernel exploits
  ☆144Updated 7 years ago
• corelan / win10_heap
  Collection of VC++ example applications to demonstrate Win10 userland heap behavior (BEA & FEA)
  ☆84Updated 8 years ago
• EgeBalci / Cminer
  Cminer is a tool for enumerating the code caves in PE files.
  ☆149Updated last year
• scumjr / the-sea-watcher
  Implementation of the SMM rootkit "The Watcher"
  ☆124Updated 3 years ago
• REhints / Publications
  Conference slides and White-papers
  ☆356Updated 5 years ago
• r00tkillah / HORSEPILL
  HORSEPILL rootkit PoC
  ☆225Updated 8 years ago
• PyAna / PyAna
  PyAna - Analyzing the Windows shellcode
  ☆246Updated 9 years ago
• nmulasmajic / syscall_exploit_CVE-2018-8897
  Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE).
  ☆116Updated 6 years ago
• Spajed / processrefund
  An attempt at Process Doppelgänging
  ☆182Updated 7 years ago