WinDbg plugin to trace module transitions from a debugged driver.
☆46Dec 22, 2025Updated 2 months ago
Alternatives and similar repositories for drvtrace
Users that are interested in drvtrace are comparing it to the libraries listed below
Sorting:
- Leveraging TPM2 TCG Logs (Measured Boot) to Detect UEFI Drivers and Pre-Boot Applications☆22Mar 28, 2025Updated 11 months ago
- ☆48Jun 6, 2025Updated 9 months ago
- ☆59Feb 19, 2026Updated last month
- ☆13Dec 27, 2014Updated 11 years ago
- A lexer and parser for Sleep☆20Feb 20, 2026Updated 3 weeks ago
- Blog/Journal on how to backdoor VSCode extensions☆78Feb 24, 2026Updated 3 weeks ago
- A large collection of blogs 🦐☆13Apr 12, 2025Updated 11 months ago
- It's what all the kids are talking about☆12Apr 25, 2023Updated 2 years ago
- Three different shellcode techniques on the Windows Kernel☆15Apr 8, 2025Updated 11 months ago
- ☆16Oct 31, 2021Updated 4 years ago
- DRM Library for Windows (x64) in C++☆29Oct 15, 2025Updated 5 months ago
- ☆14Dec 26, 2024Updated last year
- Mentally ill EtwTi parser☆69Jan 11, 2026Updated 2 months ago
- An UWP Client for e-hentai.org☆10May 22, 2018Updated 7 years ago
- Simple single file header for creating zero imports drivers. Can be useful for bypassing forensic memory analysis performed by anticheats…☆19Jun 10, 2025Updated 9 months ago
- Remote BOF Runner is a Havoc extension framework for remote execution of Beacon Object Files (BOFs) using a PIC loader made with Crystal …☆91Jan 2, 2026Updated 2 months ago
- Fluently detect security measures in software.☆32Oct 26, 2025Updated 4 months ago
- ☆20Nov 8, 2020Updated 5 years ago
- Minimal rust wrapper for Karabiner-DriverKit-VirtualHIDDevice☆16Updated this week
- Unix Process hollowing in rust☆22Dec 16, 2024Updated last year
- ☆155Jul 31, 2022Updated 3 years ago
- A serie of exploits targeting eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W☆118Oct 19, 2025Updated 5 months ago
- This repo contains EXPs about Vulnerable Windows Driver☆47May 22, 2024Updated last year
- Eset-Unload is a C++ tool that interacts with a process's loaded modules to identify and unload the ebehmoni.dll module, typically found …☆12Apr 21, 2025Updated 10 months ago
- x64dbg plugin for cleaning Themida Mutation Assembly codes.☆18May 14, 2025Updated 10 months ago
- hijacks the discord overlay and draws imgui inside of it while remaining flagless due to the discord overlay devs being retarded☆21Apr 29, 2025Updated 10 months ago
- Windows Kernel Security: Memory Integrity Verification with Disk Verification of ntoskrnl.exe☆27Mar 23, 2025Updated 11 months ago
- Here you can find some vulnerable Windows Kernel Drivers☆13Feb 21, 2025Updated last year
- Limited Windows PE linker (creating .exe from .obj and .dll files for x86 architecture)☆16Jun 15, 2019Updated 6 years ago
- A lightweight tool that injects a custom assembly proxy into a target process to silently bypass AMSI scanning by redirecting AmsiScanBuf…☆64May 16, 2025Updated 10 months ago
- early cascade injection PoC based on Outflanks blog post, in rust☆62Nov 8, 2024Updated last year
- ☆31Feb 28, 2025Updated last year
- 驱动级鼠标和键盘模拟 | Driver-level mouse and keyboard simulation based on loki-hidriver☆20Feb 19, 2025Updated last year
- 🛡️ Open-source binary protection toolkit for Windows PE. Nanomite, VM protection, anti-debug, and more.☆58Feb 8, 2026Updated last month
- Sample Rust crate used to implement a VBS enclave in Rust☆44Jun 3, 2025Updated 9 months ago
- BOF to decrypt Signal Desktop chat logs☆70Feb 20, 2025Updated last year
- Detect suspend you process☆14Jun 7, 2023Updated 2 years ago
- just a basic rootkit for learning how to playing sys_call_table☆16Sep 12, 2016Updated 9 years ago
- Advanced PoC & Research for CVE-2026-0828 (Safetica) and CVE-2025-7771 (ThrottleStop). Analysis of BYOVD (Bring Your Own Vulnerable Drive…☆28Feb 4, 2026Updated last month