Alternatives and similar repositories for PoolSprayer

Users that are interested in PoolSprayer are comparing it to the libraries listed below

• nccgroup / DIBF
  Windows NT ioctl bruteforcer and modular fuzzer
  ☆123Updated 6 years ago
• fishstiqz / poolinfo
  kernel pool windbg extension
  ☆84Updated 9 years ago
• niklasb / elgoog
  elgoog/searchme challenge from 34C3 CTF / WCTF 2018: sources & exploit
  ☆68Updated 7 years ago
• nmulasmajic / syscall_exploit_CVE-2018-8897
  Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE).
  ☆117Updated 6 years ago
• IOActive / FuzzNDIS
  A Fuzzer for Windows NDIS Drivers OID Handlers
  ☆94Updated 3 years ago
• sogeti-esec-lab / RPCForge
  Windows RPC Python fuzzer
  ☆162Updated 7 years ago
• progmboy / cansecwest2017
  ☆62Updated 8 years ago
• corelan / win10_heap
  Collection of VC++ example applications to demonstrate Win10 userland heap behavior (BEA & FEA)
  ☆85Updated 8 years ago
• v-p-b / WindowsDefenderTools
  Tools for instrumenting Windows Defender's mpengine.dll
  ☆37Updated 6 years ago
• siberas / CVE-2016-3309_Reloaded
  Exploits for the win32kfull!bFill vulnerability on Win10 x64 RS2 using Bitmap or Palette techniques
  ☆54Updated 7 years ago
• sam-b / HackSysDriverExploits
  ☆50Updated 8 years ago
• MortenSchenk / RtlCaptureContext-CFG-Bypass
  Internet Explorer Exploit with CFG bypass for Windows 10
  ☆55Updated 8 years ago
• k0keoyo / HEVD-Arbitrary-Overwrite-Exploit-Win10-rs3
  ☆34Updated 7 years ago
• CENSUS / windows_10_rs2_rs3_exploitation_primitives
  Windows 10 RS2/RS3 exploitation primitives based on the OffensiveCon 2018 talk
  ☆56Updated 7 years ago
• SinaKarvandi / windbg2ida
  Windbg2ida lets you dump each step in Windbg then shows these steps in IDA
  ☆75Updated last year
• theevilbit / kex
  ☆91Updated 5 years ago
• hugsy / hevd
  Public repository for HEVD exploits
  ☆20Updated 7 years ago
• infosecguerrilla / ReflectiveSOInjection
  Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…
  ☆117Updated 8 years ago
• Cr4sh / ioctlfuzzer
  Automatically exported from code.google.com/p/ioctlfuzzer
  ☆166Updated 10 years ago
• long123king / tokenext
  A windbg extension, extracting token related contents
  ☆41Updated 4 years ago
• Cn33liz / HSEVD-StackOverflowX64
  HackSys Extreme Vulnerable Driver - Windows 10 x64 StackOverflow Exploit with SMEP Bypass
  ☆64Updated 7 years ago
• Rootkitsmm-zz / Win32k-Fuzzer
  Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )
  ☆134Updated 9 years ago
• sensepost / gdi-palettes-exp
  DC25 5A1F - Demystifying Windows Kernel Exploitation by Abusing GDI Objects
  ☆145Updated 7 years ago
• tyranid / IE11SandboxEscapes
  Some example source code for fixed IE11 sandbox escapes.
  ☆141Updated 10 years ago
• sam-b / windbg-plugins
  Any useful windbg plugins I've written.
  ☆116Updated 7 years ago
• abatchy17 / HEVD-Exploits
  Exploit code used for the HackSysExtremeVulnerableDriver.
  ☆43Updated 6 years ago
• fdfalcon / TypeIsolationDbg
  A little WinDbg extension to help dump the state of Win32k Type Isolation structures.
  ☆38Updated 7 years ago
• leeqwind / HolicPOC
  POC and exploitation of vulnerabilities
  ☆91Updated 3 years ago
• JaanusKaapPublic / Rehepapp
  New improved corpus distillation toolset that has helped to found tens of vulnerabilities in MS and Adobe products
  ☆55Updated 5 years ago
• long123king / grep
  Grep-like WinDbg extension
  ☆44Updated 8 years ago