JKornev / cfgdumpLinks
Windbg extension that allows you analyze Control Flow Guard map
☆36Updated 4 years ago
Alternatives and similar repositories for cfgdump
Users that are interested in cfgdump are comparing it to the libraries listed below
Sorting:
- An API Monitor based on Instrumentation☆44Updated 7 years ago
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆57Updated 5 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆36Updated last year
- ☆49Updated 5 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆65Updated 5 years ago
- penter hook example and driver time recorder☆31Updated 8 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆32Updated 8 years ago
- A POC for Windows Extension Host hooking☆24Updated 6 years ago
- Driver demonstrating how to register a DPC to asynchronously wait on an object☆50Updated 4 years ago
- DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10☆53Updated last year
- ☆19Updated 6 years ago
- A research project about Windows notify routines.☆37Updated 5 years ago
- This repository contains some tools that I have written in the past☆28Updated last year
- This is a simple driver with x64 inline assembly☆57Updated 5 years ago
- AllMemPro☆46Updated 7 years ago
- CVE-2020-0890 | Windows Hyper-V Denial of Service Vulnerability proof-of-concept code☆37Updated 5 years ago
- Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.☆24Updated 7 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆35Updated 7 years ago
- clone of armadillo patched for windows☆47Updated last year
- Dumps information about all the callback objects found in a dump file and the functions registered for them☆36Updated 5 years ago
- A working version of this tutorial: https://docs.microsoft.com/en-us/windows/desktop/rpc/tutorial☆16Updated 6 years ago
- ☆33Updated 4 years ago
- Command like tool to print mitigation flags for running processes in a memory dump☆47Updated 5 years ago
- Code Integrity Violation Spotter☆17Updated last year
- ☆24Updated 4 years ago
- Window Executable file Function tracer using Debugging API☆44Updated 6 years ago
- XDV is disassembler or debugger that works based on the extension plugin.☆55Updated 6 years ago
- ☆41Updated 4 years ago
- VMCS Auditor provides almost all of Intel's VMCS Layout checklist based on Bochs Emulator.☆31Updated 6 years ago
- drvtriks kernel driver for Windows 7 SP1 and 8.1 x64, that tricks around in your system.☆33Updated 8 years ago