Sentinel-One / SKREAMLinks
SentinelOne's KeRnel Exploits Advanced Mitigations
☆54Updated 6 years ago
Alternatives and similar repositories for SKREAM
Users that are interested in SKREAM are comparing it to the libraries listed below
Sorting:
- ☆34Updated 3 years ago
- Python bindings for the Microsoft Hypervisor Platform APIs.☆80Updated 5 years ago
- A fast execution trace symbolizer for Windows.☆131Updated last year
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- POC viruses I have created to demo some ideas☆59Updated 5 years ago
- Import DynamoRIO drcov code coverage data into Ghidra☆43Updated last year
- Windbg2ida lets you dump each step in Windbg then shows these steps in IDA☆75Updated 10 months ago
- Windows NT ioctl bruteforcer and modular fuzzer☆123Updated 6 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆73Updated 5 years ago
- ☆110Updated 4 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆41Updated 5 years ago
- ☆49Updated 8 years ago
- kernel pool windbg extension☆82Updated 9 years ago
- Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE).☆116Updated 6 years ago
- A simple API monitor for Windbg☆63Updated 8 years ago
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆57Updated 4 years ago
- x86 bootloader emulation with Miasm (case of NotPetya)☆42Updated 6 years ago
- Flare-On solutions☆36Updated 5 years ago
- Simple library to spray the Windows Kernel Pool☆109Updated 5 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆58Updated 8 years ago
- Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.☆66Updated 3 years ago
- Binary Ninja plugin that syncs WinDbg to Binary Ninja☆47Updated 7 years ago
- IDA plugin to explore and browse tags☆56Updated 5 years ago
- clone of armadillo patched for windows☆47Updated 7 months ago
- pyGoRE - Python library for analyzing Go binaries☆64Updated 3 years ago
- Hyper-V Research is trendy now☆180Updated last year
- Ebfuscator: Abusing system errors for binary obfuscation☆52Updated 5 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆123Updated 4 years ago
- Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis☆45Updated 7 years ago
- Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster☆29Updated 5 years ago