Sentinel-One / peafl64Links
Static Binary Instrumentation tool for Windows x64 executables
☆206Updated last month
Alternatives and similar repositories for peafl64
Users that are interested in peafl64 are comparing it to the libraries listed below
Sorting:
- ☆145Updated last year
- Unofficial Common Log File System (CLFS) Documentation☆179Updated 3 years ago
- ☆74Updated 11 months ago
- msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.☆152Updated last year
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆228Updated 2 years ago
- ☆145Updated 2 years ago
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆117Updated last month
- Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…☆228Updated 2 years ago
- rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump☆116Updated last year
- A tool that is used to hunt vulnerabilities in x64 WDM drivers☆202Updated 2 months ago
- The Windbg extensions to study Hyper-V on Intel and AMD processors.☆153Updated 3 months ago
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆89Updated 3 years ago
- ☆161Updated 3 years ago
- ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…☆125Updated last week
- An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.☆139Updated 2 years ago
- Writeups for CTF challenges☆31Updated last year
- PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap☆208Updated 4 years ago
- This framework enables user to discover JOP gagdets and can automate building a complete JOP chain to bypass DEP. JOP ROCKET is the ultim…☆105Updated 9 months ago
- ☆70Updated 2 years ago
- Bindings for Microsoft WinDBG TTD☆225Updated last year
- Windows KASLR bypass using prefetch side-channel☆102Updated last year
- ☆199Updated last year
- Find patterns of vulnerabilities on Windows in order to find 0-day and write exploits of 1-days. We use Microsoft security updates in ord…☆186Updated 3 years ago
- Some of my windows kernel exploits for learning purposes☆128Updated 3 years ago
- ☆130Updated last month
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆116Updated 11 months ago
- A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.☆94Updated 8 months ago
- IDA Pro plugin for recognizing known hashes of API function names☆81Updated 3 years ago
- Exploring RPC interfaces on Windows☆322Updated last year
- Leveraging CVEs as North Stars in vulnerability discovery and comprehension.☆66Updated last year