Alternatives and similar repositories for windbg-kernel-debug-cheat-sheet

Users that are interested in windbg-kernel-debug-cheat-sheet are comparing it to the libraries listed below

• zeze-zeze / ioctlance
  A tool that is used to hunt vulnerabilities in x64 WDM drivers
  ☆206Updated 3 months ago
• VoidSec / ioctlpus
  IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).
  ☆92Updated 3 years ago
• tandasat / hvext
  The Windbg extensions to study Hyper-V on Intel and AMD processors.
  ☆153Updated 4 months ago
• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆146Updated 10 months ago
• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆152Updated last year
• Signal-Labs / IOCTLDump
  ☆145Updated 2 years ago
• carlos-al / user-kernel-syscall-hook
  ☆91Updated last year
• hasherezade / pe_unmapper
  Small tool to convert beteween the PE alignments (raw and virtual).
  ☆93Updated 2 years ago
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆145Updated 2 years ago
• jk45054 / CTF-writeups
  Writeups for CTF challenges
  ☆31Updated last year
• yardenshafir / IoRingReadWritePrimitive
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆229Updated 3 years ago
• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆206Updated 2 months ago
• Idov31 / NovaHypervisor
  NovaHypervisor is a defensive x64 Intel host based hypervisor. The goal of this project is to protect against kernel based attacks (eithe…
  ☆137Updated this week
• hugsy / recon_2024_windbg_workshop
  ☆74Updated last year
• waleedassar / SimpleNTSyscallFuzzer
  ☆145Updated last year
• mrexodia / phnt-single-header
  Single header version of System Informer's phnt library.
  ☆226Updated this week
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆84Updated 4 years ago
• zer0condition / Demystifying-PatchGuard
  Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…
  ☆125Updated 2 years ago
• repnz / apc-research
  APC Internals Research Code
  ☆166Updated 5 years ago
• badhive / stitch
  Rewrite and obfuscate code in compiled binaries
  ☆115Updated this week
• 0vercl0k / snapshot
  WinDbg extension written in Rust to dump the CPU / memory state of a running VM
  ☆117Updated 2 months ago
• waleedassar / RestrictedKernelLeaks
  ☆162Updated 3 years ago
• exploits-forsale / prefetch-tool
  Windows KASLR bypass using prefetch side-channel
  ☆111Updated last year
• DriverHunter / Win-Driver-EXP
  This repo contains EXPs about Vulnerable Windows Driver
  ☆46Updated last year
• therealdreg / masm32-kernel-programming
  masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)
  ☆124Updated last year
• thalium / ida_kmdf
  ☆77Updated 4 months ago
• idiom / stackstack
  ☆31Updated 3 years ago
• TakahiroHaruyama / VDR
  Vulnerable driver research tool, result and exploit PoCs
  ☆195Updated last year
• brew02 / BudgetEPT
  Create stealthy, inline, EPT-like hooks using SMAP and SMEP
  ☆55Updated 8 months ago
• D4stiny / ExceptionOrientedProgramming
  Abusing exceptions for code execution.
  ☆111Updated 2 years ago