MortenSchenk / tagWnd-Hardening-BypassLinks
Bypass for the hardening against usage of tagWnd as a kernel read/write primitive
☆29Updated 8 years ago
Alternatives and similar repositories for tagWnd-Hardening-Bypass
Users that are interested in tagWnd-Hardening-Bypass are comparing it to the libraries listed below
Sorting:
- ☆34Updated 7 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆34Updated 6 years ago
- ☆45Updated 4 years ago
- Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.☆24Updated 7 years ago
- Windbg extension that allows you analyze Control Flow Guard map☆35Updated 3 years ago
- drvtriks kernel driver for Windows 7 SP1 and 8.1 x64, that tricks around in your system.☆32Updated 7 years ago
- Kernel-mode file scanner☆18Updated 6 years ago
- Experimental Windows .text section Patch Detector☆21Updated 10 years ago
- Helper utility for debugging windows PE/PE+ loader.☆52Updated 10 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22Updated 8 years ago
- ☆34Updated 3 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆58Updated 8 years ago
- PCAUSA Rawether for Windows Local Privilege Escalation☆38Updated 8 years ago
- My conference presentations and publications☆26Updated 3 years ago
- ☆28Updated 5 years ago
- ☆16Updated 5 years ago
- ☆21Updated 4 years ago
- Data and structures regarding the research done on WdFilter☆12Updated 5 years ago
- ☆11Updated 2 years ago
- ☆50Updated 8 years ago
- This repository contains some tools that I have written in the past☆28Updated last year
- Blog posts☆30Updated 4 years ago
- ☆28Updated 8 years ago
- Kernel Shellcode to add all privileges in token☆13Updated 8 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆35Updated 10 months ago
- Decrement Windows Kernel for fun and profit☆38Updated 7 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆19Updated 7 years ago
- A little WinDbg extension to help dump the state of Win32k Type Isolation structures.☆38Updated 7 years ago
- ☆24Updated 9 years ago
- Use WinDBG to trace the Windows API calls of any Portable Executable file☆31Updated 8 years ago