Alternatives and similar repositories for kmdf_re

Users that are interested in kmdf_re are comparing it to the libraries listed below

• bluefrostsecurity / Meltdown-KVA-Shadow-Leak
  ☆47Updated 5 years ago
• SinaKarvandi / windbg2ida
  Windbg2ida lets you dump each step in Windbg then shows these steps in IDA
  ☆75Updated last year
• jackullrich / Windows-API-Fuzzer
  Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.
  ☆99Updated 5 years ago
• yardenshafir / MitigationFlagsCliTool
  Command like tool to print mitigation flags for running processes in a memory dump
  ☆47Updated 4 years ago
• vp777 / exploit-dev
  ☆11Updated 2 years ago
• BehroozAbbassi / VmwpMonitor
  ☆40Updated 4 years ago
• 0vercl0k / lockmem
  This utility allows you to lock every available memory regions of an arbitrary process into its working set.
  ☆68Updated 2 years ago
• VoidSec / ioctlpus
  IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).
  ☆92Updated 3 years ago
• k0keoyo / ksRPC_analysis_script
  ☆12Updated 5 years ago
• JaanusKaapPublic / BlogHyperV
  Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/
  ☆58Updated 5 years ago
• airbus-cert / ttd2mdmp
  Extract data of TTD trace file to a minidump
  ☆30Updated 2 years ago
• waleedassar / RestrictedKernelLeaks
  ☆162Updated 3 years ago
• DownWithUp / DynamicKernelShellcode
  An example of how x64 kernel shellcode can dynamically find and use APIs
  ☆106Updated 5 years ago
• Signal-Labs / IOCTLDump
  ☆145Updated 2 years ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆73Updated last year
• redplait / armpatched
  clone of armadillo patched for windows
  ☆47Updated 9 months ago
• ionescu007 / hazmat5
  Local OXID Resolver (LCLOR) : Research and Tooling
  ☆35Updated 4 years ago
• pwnlogs / d-time
  This repository contains D-TIME: Distributed Threadless Independent Malware Execution for Runtime Obfuscation.
  ☆36Updated 4 years ago
• BehroozAbbassi / DriverAnalyzer
  A static analysis tool that helps security researchers scan a list of Windows kernel drivers for common vulnerability patterns in drivers…
  ☆69Updated 3 years ago
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆84Updated 4 years ago
• 0vercl0k / symbolizer
  A fast execution trace symbolizer for Windows.
  ☆131Updated last year
• liba2k / Insomni-Hack-2022
  Breaking Secure Boot with SMM
  ☆41Updated 3 years ago
• yrp604 / bdump
  ☆47Updated 2 years ago
• 0vercl0k / kdmp-parser-rs
  A KISS Rust crate to parse Windows kernel crash-dumps created by Windows & its debugger.
  ☆37Updated 5 months ago
• mathisvickie / CVE-2021-21551
  arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system
  ☆57Updated 3 years ago
• DownWithUp / CVE-Stockpile
  Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.
  ☆49Updated 4 years ago
• tinysec / rtypes
  A simple but useful project maybe help you reverse Windows.
  ☆38Updated last year
• 0vercl0k / symbolizer-rs
  A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.
  ☆94Updated 9 months ago
• 0vercl0k / kdmp-parser
  A Windows kernel dump C++ parser library with Python 3 bindings.
  ☆203Updated last year
• rjt-gupta / CVE-2021-29337
  CVE-2021-29337 - Privilege Escalation in MODAPI.sys (MSI Dragon Center)
  ☆30Updated 3 years ago