Meowoverflow / Rootkits_Subverting_the_Windows_KernelLinks
source code for the examples and topics from the book
☆10Updated 6 years ago
Alternatives and similar repositories for Rootkits_Subverting_the_Windows_Kernel
Users that are interested in Rootkits_Subverting_the_Windows_Kernel are comparing it to the libraries listed below
Sorting:
- NT AUTHORITY\SYSTEM☆38Updated 4 years ago
- An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples☆70Updated 3 years ago
- ☆14Updated 3 years ago
- "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …☆39Updated 5 years ago
- Windows GPU rootkit PoC by Team Jellyfish☆35Updated 10 years ago
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆26Updated last year
- This x64dbg plugin allows you to upload your sample to Malcore and view the results.☆37Updated last year
- Binary Ninja plugin to perform automated analysis of Windows drivers☆16Updated 5 years ago
- A years-old exploit of a local EoP vulnerability in Kingsoft Antivirus KWatch Driver version 2009.3.17.77.☆38Updated 3 years ago
- Neutralize KEPServerEX anti-debugging techniques☆32Updated 2 years ago
- ☆29Updated 3 years ago
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆98Updated 4 years ago
- ☆46Updated 4 years ago
- TrashDBG the world's worse debugger☆23Updated 3 years ago
- using the gpu to hide your payload☆59Updated 2 years ago
- ☆25Updated 7 months ago
- House of Gods Heap Exploitation Technique☆18Updated 2 years ago
- x86 and x64 assembly "read-eval-print loop" for Windows☆29Updated 7 years ago
- Random CVEs☆32Updated last month
- Report and exploit of CVE-2023-36427☆90Updated last year
- havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets☆30Updated 10 months ago
- ☆16Updated 2 years ago
- WinREPL is a "read-eval-print loop" shell on Windows that is useful for testing/learning x86 and x64 assembly.☆17Updated 2 years ago
- Windows kernel PDB data parsed into YAML☆37Updated 7 months ago
- ☆18Updated 4 years ago
- Windbg extension port for rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.☆13Updated last year
- Custom instruction length for hex-rays☆18Updated 5 months ago
- Extract data of TTD trace file to a minidump☆28Updated last year
- I collect writeup about analysis CVEs and Exploits on the Windows in this repository.☆15Updated 3 years ago
- Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.☆66Updated 3 years ago