clymb3r / KdExploitMeLinks
A kernel driver to practice writing exploits against, as well as some example exploits using public techniques.
☆403Updated 10 years ago
Alternatives and similar repositories for KdExploitMe
Users that are interested in KdExploitMe are comparing it to the libraries listed below
Sorting:
- Content from presentation at BHUSA 2017☆180Updated 7 years ago
- Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits☆394Updated 5 years ago
- Pocs for Antivirus Software‘s Kernel Vulnerabilities☆263Updated 7 years ago
- ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks.☆286Updated 9 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆434Updated 6 years ago
- C++ application that uses memory and code hooks to detect packers☆270Updated 7 years ago
- Bunch of techniques potentially used by malware to detect analysis environments☆159Updated 8 years ago
- Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )☆133Updated 9 years ago
- A set of tutorials about code injection for Windows.☆311Updated 9 months ago
- A tool to detect and crash Cuckoo Sandbox☆294Updated 10 months ago
- I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016☆163Updated 8 years ago
- ATrace is a tool for tracing execution of binaries on Windows.☆238Updated 8 years ago
- DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.☆362Updated 5 years ago
- Small tool for generating ropchains using unicorn and z3☆198Updated 7 years ago
- Automatically exported from code.google.com/p/ioctlfuzzer☆165Updated 9 years ago
- Python scripts for reverse engineering.☆184Updated 4 years ago
- flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.☆150Updated 7 years ago
- ☆138Updated 3 years ago
- Loading unsigned code into kernel in Windows 10 (64) with help of VMware Workstation Pro/Player design flaw☆136Updated 8 years ago
- ☆235Updated 7 years ago
- PowerLoaderEx - Advanced Code Injection Technique for x32 / x64☆368Updated 8 years ago
- PEDA-like debugger UI for WinDbg☆204Updated last year
- Collection of VC++ example applications to demonstrate Win10 userland heap behavior (BEA & FEA)☆84Updated 8 years ago
- Patching ROP-encoded shellcodes into PEs☆186Updated 7 years ago
- Cross Platform Kernel Fuzzer Framework☆450Updated 6 years ago
- DC25 5A1F - Demystifying Windows Kernel Exploitation by Abusing GDI Objects☆145Updated 7 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆298Updated 6 years ago
- PEI stage backdoor for UEFI compatible firmware☆221Updated 4 years ago
- Hardcore corruption of my execve() vulnerability in WSL☆215Updated 7 years ago
- ☆141Updated 8 years ago