bi-zone / rdtsc-checkvirt-pocLinks
Virtualization detection through speculative execution PoCs and papers
☆68Updated 7 years ago
Alternatives and similar repositories for rdtsc-checkvirt-poc
Users that are interested in rdtsc-checkvirt-poc are comparing it to the libraries listed below
Sorting:
- reverse engineering extension plugin for windbg☆119Updated 6 years ago
- DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10☆53Updated last year
- A tool to help malware analysts tell that the sample is injecting code into other process.☆78Updated 10 years ago
- Open Course for diving security internal☆51Updated 5 years ago
- This is a simple driver with x64 inline assembly☆57Updated 5 years ago
- Elevation of privilege detector based on HyperPlatform☆122Updated 8 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆57Updated 9 years ago
- MSI NTIOLib/WinIO Local Privilege Escalation exploit☆96Updated 9 years ago
- WinDbg debugger extension library providing various tools to analyse, dump and fix (restore) Microsoft Portable Executable files for both…☆84Updated last year
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆65Updated 5 years ago
- a binary x86win32 code obfuscator using virtual machine☆32Updated 8 years ago
- Driver demonstrating how to register a DPC to asynchronously wait on an object☆50Updated 4 years ago
- VMCS Auditor provides almost all of Intel's VMCS Layout checklist based on Bochs Emulator.☆31Updated 6 years ago
- ☆81Updated 7 years ago
- Library for kernel and user mode splicing for Windows (x86 and x64).☆64Updated 12 years ago
- ☆108Updated 7 years ago
- Automatically exported from code.google.com/p/virtdbg☆99Updated 10 years ago
- Standalone program to download PDB Symbol files for debugging without WDK☆78Updated 6 years ago
- An API Monitor based on Instrumentation☆44Updated 7 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆63Updated 6 years ago
- ☆72Updated 11 years ago
- Analyze and attack windows applications using dll hijacking vulnerabilities☆59Updated 6 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆36Updated last year
- Simple proof of concept code for injecting libraries on 64bit processes from a 32bit process☆96Updated 7 years ago
- clone of armadillo patched for windows☆47Updated 11 months ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆78Updated 14 years ago
- Collection Of Anti-Debugging Tricks☆101Updated 9 years ago
- This repository contains some tools that I have written in the past☆28Updated last year
- ☆34Updated 8 years ago
- Intermediate x86 instruction representation for use in obfuscation/deobfuscation.☆60Updated 3 months ago