Sentinel-One / SKREAMLinks
SentinelOne's KeRnel Exploits Advanced Mitigations
☆54Updated 6 years ago
Alternatives and similar repositories for SKREAM
Users that are interested in SKREAM are comparing it to the libraries listed below
Sorting:
- Python bindings for the Microsoft Hypervisor Platform APIs.☆79Updated 6 years ago
- A fast execution trace symbolizer for Windows.☆131Updated last year
- Windbg2ida lets you dump each step in Windbg then shows these steps in IDA☆75Updated last year
- x86 bootloader emulation with Miasm (case of NotPetya)☆43Updated 6 years ago
- ☆34Updated 4 years ago
- Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE).☆117Updated 6 years ago
- POC viruses I have created to demo some ideas☆59Updated 5 years ago
- Windows NT ioctl bruteforcer and modular fuzzer☆123Updated 6 years ago
- Simple library to spray the Windows Kernel Pool☆110Updated 5 years ago
- A project that aims to automatically devirtualize code that has been virtualized using x86virt☆126Updated 2 years ago
- This is a place to share my miscellaneous projects.☆114Updated 5 years ago
- Static unpacker for FinSpy VM☆101Updated 4 years ago
- Hyper-V scripts☆126Updated last week
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆74Updated 6 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆123Updated 4 years ago
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- kernel pool windbg extension☆84Updated 10 years ago
- Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis☆45Updated 7 years ago
- Polymorphic VM and PoliCTF '17 reversing challenge.☆73Updated 10 months ago
- ☆50Updated 8 years ago
- Hyper-V Research is trendy now☆182Updated last year
- Elevation of privilege detector based on HyperPlatform☆122Updated 8 years ago
- Enumerate user mode shared memory mappings on Windows.☆122Updated 4 years ago
- ☆66Updated 6 years ago
- Flare-On solutions☆36Updated 5 years ago
- Driver Initial Reconnaissance Tool☆123Updated 5 years ago
- ☆74Updated 4 years ago
- Hypervisor-based debugger☆189Updated 4 years ago
- Load a Windows Kernel Driver☆92Updated 8 years ago
- ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.☆92Updated 6 years ago