Alternatives and similar repositories for swapgs-attack-poc

Users that are interested in swapgs-attack-poc are comparing it to the libraries listed below

• gerhart01 / hyperv_local_dos_poc
  CVE-2020-0890 | Windows Hyper-V Denial of Service Vulnerability proof-of-concept code
  ☆36Updated 4 years ago
• tenable / mIDA
  ☆33Updated 2 years ago
• bluefrostsecurity / Meltdown-KVA-Shadow-Leak
  ☆46Updated 4 years ago
• andreafioraldi / angr-win64-wheels
  prebuild angr wheels for Windows on x86_64
  ☆15Updated 6 years ago
• JKornev / cfgdump
  Windbg extension that allows you analyze Control Flow Guard map
  ☆35Updated 3 years ago
• MortenSchenk / tagWnd-Hardening-Bypass
  Bypass for the hardening against usage of tagWnd as a kernel read/write primitive
  ☆29Updated 8 years ago
• gamozolabs / aflbench
  An AFL scaling benchmarking tool
  ☆18Updated 5 years ago
• RolfRolles / SMTSample
  Course sample for SMT-Based Binary Program Analysis training class
  ☆30Updated 7 years ago
• BehroozAbbassi / VmwpMonitor
  ☆40Updated 4 years ago
• liba2k / Insomni-Hack-2022
  Breaking Secure Boot with SMM
  ☆41Updated 3 years ago
• hugsy / ropgadget-rs
  Another (bad) ROP gadget finder, but this time in Rust
  ☆21Updated last year
• JaanusKaapPublic / BlogHyperV
  Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/
  ☆58Updated 5 years ago
• 0vercl0k / symbolizer
  A fast execution trace symbolizer for Windows.
  ☆131Updated last year
• yrp604 / bdump
  ☆47Updated 2 years ago
• progmboy / kernel_vul_poc
  ☆31Updated 7 years ago
• JonathanSalwan / X-Tunnel-Opaque-Predicates
  IDA+Triton plugin in order to extract opaque predicates using a Forward-Bounded DSE. Example with X-Tunnel.
  ☆53Updated 5 years ago
• RceNinja / Re-Scripts
  ☆34Updated 3 years ago
• season-lab / ropdissector
  A framework for static analysis of ROP exploits and programs
  ☆40Updated 6 years ago
• shijy16 / WDFuzzer
  A coverage-guided and memory-detection enabled fuzzer for windows applications.
  ☆31Updated 4 years ago
• Brandon-Everhart / AngryIDA
  Python based angr plug in for IDA Pro.
  ☆35Updated 7 years ago
• sam-b / HackSysDriverExploits
  ☆50Updated 8 years ago
• 4B5F5F4B / HyperV
  PoC for CVE-2017-0075
  ☆37Updated 5 years ago
• long123king / dk
  dk is a WinDbg extenion for dumping memory data in meaningful and organized ways, it is an enhancement of my previous tokenext project.
  ☆24Updated last year
• rrbranco / kdf
  PoC || GTFO Article Materials on Kernel Double Free
  ☆12Updated 8 years ago
• aguinet / miasm-bootloader
  x86 bootloader emulation with Miasm (case of NotPetya)
  ☆43Updated 6 years ago
• tekwizz123 / HEVD-Exploit-Solutions
  Solutions to HackSysExtremeVulnerableDriver challenges though my following of @FuzzySecurity's tutorials plus futher explanations where n…
  ☆22Updated 7 years ago
• fdfalcon / TypeIsolationDbg
  A little WinDbg extension to help dump the state of Win32k Type Isolation structures.
  ☆38Updated 7 years ago
• Bl1nnnk / kAFL
  Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels
  ☆18Updated 4 years ago
• waleedassar / SyscallNumberFinder
  ☆33Updated 3 years ago
• RICSecLab / AFLplusplus-cs
  ☆18Updated 3 years ago