bitdefender / swapgs-attack-poc

Related projects ⓘ

Alternatives and complementary repositories for swapgs-attack-poc

• gerhart01 / hyperv_local_dos_poc
  CVE-2020-0890 | Windows Hyper-V Denial of Service Vulnerability proof-of-concept code
  ☆36Updated 4 years ago
• yrp604 / bdump
  ☆46Updated 2 years ago
• 0vercl0k / symbolizer
  A fast execution trace symbolizer for Windows.
  ☆130Updated 6 months ago
• bluefrostsecurity / Meltdown-KVA-Shadow-Leak
  ☆44Updated 4 years ago
• Brandon-Everhart / AngryIDA
  Python based angr plug in for IDA Pro.
  ☆34Updated 6 years ago
• JaanusKaapPublic / BlogHyperV
  Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/
  ☆54Updated 4 years ago
• 0xAlexei / Publications
  My conference presentations and publications
  ☆26Updated 2 years ago
• Bl1nnnk / kAFL
  Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels
  ☆18Updated 4 years ago
• tenable / mIDA
  ☆33Updated last year
• andreafioraldi / angr-win64-wheels
  prebuild angr wheels for Windows on x86_64
  ☆13Updated 6 years ago
• 4B5F5F4B / HyperV
  PoC for CVE-2017-0075
  ☆36Updated 5 years ago
• kukrimate / grr
  AMD SVM hypervisor rootkit proof of concept
  ☆42Updated last year
• BehroozAbbassi / VmwpMonitor
  ☆39Updated 3 years ago
• shijy16 / WDFuzzer
  A coverage-guided and memory-detection enabled fuzzer for windows applications.
  ☆30Updated 3 years ago
• season-lab / ropdissector
  A framework for static analysis of ROP exploits and programs
  ☆40Updated 5 years ago
• RolfRolles / SMTSample
  Course sample for SMT-Based Binary Program Analysis training class
  ☆30Updated 6 years ago
• RICSecLab / AFLplusplus-cs
  ☆17Updated 2 years ago
• fdfalcon / TypeIsolationDbg
  A little WinDbg extension to help dump the state of Win32k Type Isolation structures.
  ☆38Updated 6 years ago
• MortenSchenk / tagWnd-Hardening-Bypass
  Bypass for the hardening against usage of tagWnd as a kernel read/write primitive
  ☆26Updated 7 years ago
• sam-b / HackSysDriverExploits
  ☆47Updated 7 years ago
• hugsy / ropgadget-rs
  Another (bad) ROP gadget finder, but this time in Rust
  ☆18Updated 7 months ago
• progmboy / kernel_vul_poc
  ☆31Updated 6 years ago
• quarkslab / whvp
  PoC for a snapshot-based coverage-guided fuzzer targeting Windows kernel components
  ☆68Updated 3 years ago
• MortenSchenk / LoadLibrary-CFG-Bypass
  Control Flow Guard bypass using LoadLibrary and IsBadCodePtr
  ☆45Updated 7 years ago
• JonathanSalwan / X-Tunnel-Opaque-Predicates
  IDA+Triton plugin in order to extract opaque predicates using a Forward-Bounded DSE. Example with X-Tunnel.
  ☆51Updated 5 years ago
• tekwizz123 / HEVD-Exploit-Solutions
  Solutions to HackSysExtremeVulnerableDriver challenges though my following of @FuzzySecurity's tutorials plus futher explanations where n…
  ☆21Updated 7 years ago
• s0i37 / winafl_inmemory
  WINAFL for blackbox in-memory fuzzing (PIN)
  ☆47Updated 5 years ago
• RceNinja / Re-Scripts
  ☆33Updated 3 years ago