changeofpace / Remote-Process-Cookie-for-Windows-7
Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.
☆21Updated 7 years ago
Related projects ⓘ
Alternatives and complementary repositories for Remote-Process-Cookie-for-Windows-7
- Kernel-mode file scanner☆17Updated 6 years ago
- ☆10Updated 7 years ago
- A couple of little tools I've made for working with Windows Drivers☆15Updated 8 years ago
- reverse win7 32bit hotpatch implement☆9Updated 11 years ago
- Legal access: The driver and console app to demonstrate the basic memory access in kernel mode☆9Updated 6 years ago
- Allows you to add breakpoints from IDA (from the graph/text view) to WinDbg easily☆14Updated 6 years ago
- ☆10Updated 10 years ago
- Import debugging traces from WinDBG into IDA. Color the graph, fill in the value of all the operands, etc.☆25Updated 12 years ago
- PIN Tool for monitoring calls and writes from obfuscated code.☆26Updated 5 years ago
- Windows device tree walker☆15Updated 6 years ago
- ☆14Updated 7 years ago
- Malwarebytes Antivirus CVE☆8Updated 6 years ago
- Windows registry files interactive viewer☆9Updated 7 years ago
- ☆13Updated 6 years ago
- Reverse engineered vmware workstation code to aid in kernel debugging.☆14Updated 8 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆26Updated 7 years ago
- ☆12Updated 7 years ago
- 파일시스템 미니필터 드라이버 (교육용 코드)☆6Updated 5 years ago
- reversed emet tool☆24Updated 12 years ago
- Common Malware Techniques☆13Updated last year
- Windows 10 UAC bypass PoC using LaunchInfSection☆34Updated 6 years ago
- Kernel Shellcode to add all privileges in token☆13Updated 7 years ago