Sentinel-One / peafl64Links
Static Binary Instrumentation tool for Windows x64 executables
☆207Updated 3 weeks ago
Alternatives and similar repositories for peafl64
Users that are interested in peafl64 are comparing it to the libraries listed below
Sorting:
- ☆147Updated last year
- Unofficial Common Log File System (CLFS) Documentation☆184Updated 4 years ago
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆236Updated 3 years ago
- ☆164Updated 4 years ago
- ☆147Updated 2 years ago
- ☆74Updated last year
- Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…☆246Updated 3 years ago
- msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.☆153Updated last year
- Windows KASLR bypass using prefetch side-channel☆131Updated last year
- ☆83Updated 2 months ago
- Bindings for Microsoft WinDBG TTD☆233Updated 2 years ago
- This framework enables user to discover JOP gagdets and can automate building a complete JOP chain to bypass DEP. JOP ROCKET is the ultim…☆108Updated last year
- Writeups for CTF challenges☆32Updated last year
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆124Updated last week
- Static binary instrumentation for windows kernel drivers, to use with winafl☆77Updated 8 months ago
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆93Updated 3 years ago
- The Windbg extensions to study Hyper-V on Intel and AMD processors.☆167Updated last month
- Some of my windows kernel exploits for learning purposes☆131Updated 3 years ago
- ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…☆158Updated last month
- rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump☆121Updated last year
- PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap☆211Updated 5 years ago
- A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.☆97Updated last year
- Vulnerable driver research tool, result and exploit PoCs☆217Updated last year
- msFuzz is a coverage-guided fuzzer for Windows kernel drivers that utilizes Intel PT and leverages constraint and dependency analysis to …☆191Updated 5 months ago
- Leveraging patch diffing to discover new vulnerabilities☆136Updated last year
- Report and exploit of CVE-2023-36427☆88Updated last year
- An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.☆145Updated 2 years ago
- Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)☆227Updated 2 years ago
- Kernel Exploits☆260Updated 4 years ago
- An intuitive query API for IDA Pro☆161Updated this week