archercreat / vdk
vdk is a set of utilities used to help with exploitation of a vulnerable driver.
☆39Updated 2 years ago
Alternatives and similar repositories for vdk:
Users that are interested in vdk are comparing it to the libraries listed below
- A library for intel VT-x hypervisor functionality supporting EPT shadowing.☆49Updated 4 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆63Updated last year
- ☆30Updated 3 years ago
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆37Updated 6 months ago
- A poc that abuses Enclave☆38Updated 2 years ago
- VMProtectTest☆35Updated 2 years ago
- ☆36Updated 2 years ago
- detect hypervisor with Nmi Callback☆34Updated 2 years ago
- An extended proof-of-concept for the CVE-2021-21551 Dell ‘dbutil_2_3.sys’ Kernel Exploit☆24Updated 3 years ago
- Kernel ReClassEx☆61Updated last year
- devirtualization vmprotect☆62Updated 2 years ago
- A repository of IDA Databases and Binaries used for the analysis of popular commercial virtual-machine obfuscators☆70Updated 2 years ago
- ☆21Updated 3 years ago
- x64 Windows implementation of virtual-address to physical-address translation☆40Updated 3 years ago
- Type 2 Hypervisor for security research supported by AMD-V hardware assisted virtualization☆38Updated 2 years ago
- Visual Studio Project example for using Microsoft's STL in WDM (Windows Kernel-mode Driver)☆25Updated 3 years ago
- Extensions for x64dbg written in Rust: Telescope and Unicorn powered disassembly☆25Updated last year
- unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…☆58Updated last year
- POC Hook of nt!HvcallCodeVa☆51Updated last year
- ☆68Updated 4 years ago
- Binary rewriter for 64-bit PE files.☆70Updated last year
- ☆32Updated last year
- Code virtualizer☆23Updated 8 years ago
- A reflexive driver loader to bypass Windows DSE (featuring a custom PE loader)☆41Updated 6 years ago
- Hijack NotifyRoutine for a kernelmode thread☆41Updated 2 years ago
- This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness☆51Updated 5 years ago
- x86-64 user mode emulation using Zydis☆46Updated 3 months ago
- How Meltdown and Spectre haunt Anti-Cheat: DVRT details☆21Updated 8 months ago
- A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe☆69Updated last year
- ☆26Updated 3 years ago