SinaKarvandi / MiscView external linksLinks
This is a place to share my miscellaneous projects.
☆116May 2, 2020Updated 5 years ago
Alternatives and similar repositories for Misc
Users that are interested in Misc are comparing it to the libraries listed below
Sorting:
- This is a collection of interesting codes about Windows Process creation.☆237Jan 12, 2024Updated 2 years ago
- This is the documentation of HyperDbg Debugger. You can also visit https://docs.hyperdbg.org☆24Updated this week
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆66Apr 4, 2020Updated 5 years ago
- POC viruses I have created to demo some ideas☆59Apr 12, 2020Updated 5 years ago
- Toolkit for Hyper-V security research☆157Mar 7, 2022Updated 3 years ago
- CFB is a ProcMon-style tool designed to assist capturing IRPs sent to Windows drivers.☆333Mar 26, 2024Updated last year
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆239Nov 6, 2019Updated 6 years ago
- Windbg2ida lets you dump each step in Windbg then shows these steps in IDA☆75Jul 6, 2024Updated last year
- VMX intrinsics plugin for Hex-Rays decompiler☆73Oct 28, 2019Updated 6 years ago
- Dump of win32k POCs for bugs I've found☆381Mar 6, 2022Updated 3 years ago
- A collection of useful HyperDbg scripts☆27Aug 22, 2024Updated last year
- Virtual Machine Introspection, Tracing & Debugging☆595Feb 22, 2022Updated 3 years ago
- codes for my blog post: https://secrary.com/Random/InstrumentationCallback/☆183Nov 30, 2017Updated 8 years ago
- This driver implements the Intel Processor Trace functionality in Intel Skylake architecture for Microsoft Windows☆463Apr 17, 2018Updated 7 years ago
- A fast execution trace symbolizer for Windows.☆130May 6, 2024Updated last year
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆57Jun 21, 2020Updated 5 years ago
- A Windows kernel dump C++ parser library with Python 3 bindings.☆213Oct 5, 2025Updated 4 months ago
- Research on Windows Kernel Executive Callback Objects☆315Feb 22, 2020Updated 5 years ago
- ☆68Dec 17, 2020Updated 5 years ago
- APC Internals Research Code☆167Jun 28, 2020Updated 5 years ago
- Simple 32/64-bit PEs loader.☆139Dec 19, 2018Updated 7 years ago
- Browse Page Tables on Windows (Page Table Viewer)☆234Apr 2, 2022Updated 3 years ago
- AllMemPro☆46Jan 15, 2018Updated 8 years ago
- QEMU to drcov trace file☆11Nov 21, 2020Updated 5 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆104May 14, 2020Updated 5 years ago
- A very simple hypervisor for learning experience.☆147Oct 25, 2021Updated 4 years ago
- Control Flow Guard Teleportation demo☆23Jul 28, 2019Updated 6 years ago
- PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap☆215Jul 2, 2020Updated 5 years ago
- Hypervisor-based debugger☆191Dec 2, 2020Updated 5 years ago
- 轻量级自动分析病毒程序调用上下文、游戏反调试实现技术平台☆100Jun 21, 2020Updated 5 years ago
- ☆41Jun 6, 2021Updated 4 years ago
- Examples of leaking Kernel Mode information from User Mode on Windows☆629Jul 7, 2017Updated 8 years ago
- Internals information about Hyper-V☆732Dec 20, 2025Updated last month
- A driver that hooks C: volume using symbolic link callback to track all FS access to the volume☆110Apr 24, 2020Updated 5 years ago
- POC Hook of nt!HvcallCodeVa☆54May 8, 2023Updated 2 years ago
- NINA: No Injection, No Allocation x64 Process Injection Technique☆227Jun 9, 2020Updated 5 years ago
- An API Monitor based on Instrumentation☆44Dec 19, 2017Updated 8 years ago
- KLEE-fl : Compile Project to Bitcode and Try Fuzzing with KLEE .☆30Apr 7, 2019Updated 6 years ago
- Collects extended function properties from IDA Pro databases☆94Dec 6, 2020Updated 5 years ago