A little WinDbg extension to help dump the state of Win32k Type Isolation structures.
☆38Feb 2, 2018Updated 8 years ago
Alternatives and similar repositories for TypeIsolationDbg
Users that are interested in TypeIsolationDbg are comparing it to the libraries listed below
Sorting:
- PowerShell interpreter for unmanaged (non CLI) C++ projects☆16Jul 19, 2017Updated 8 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22May 31, 2017Updated 8 years ago
- Confirms the capability of Hardware-Accelerated Virtualization Technology.☆10Updated this week
- windbg plugin for win32k debugging☆75Oct 14, 2019Updated 6 years ago
- A Proof-of-Concept win32 DLL that makes use of netbios session token replay to propagate through a Windows Domain☆25Apr 14, 2018Updated 7 years ago
- 基于WinDivert实现的一个包过滤与截断程序☆13Jul 22, 2018Updated 7 years ago
- Control Flow Guard bypass using LoadLibrary and IsBadCodePtr☆46Jan 19, 2017Updated 9 years ago
- Kernel driver to fuzz Hyper-V hypercalls☆136Feb 15, 2019Updated 7 years ago
- ☆12Feb 19, 2017Updated 9 years ago
- ☆34Nov 17, 2017Updated 8 years ago
- A debugger for windows platform☆20Oct 31, 2018Updated 7 years ago
- Slides of 44Con 2018☆22Oct 11, 2018Updated 7 years ago
- AllMemPro☆46Jan 15, 2018Updated 8 years ago
- Analyze PatchGuard☆56Aug 19, 2018Updated 7 years ago
- My research environment based off of Microsoft's Singularity RDK/ Verve.☆16Nov 27, 2016Updated 9 years ago
- 常用代码类☆13May 31, 2014Updated 11 years ago
- Kernel-mode file scanner☆19Jul 16, 2018Updated 7 years ago
- Team Portfolio. PLAYERUNKNOWN'S BATTLEGROUNDS(a.k.a. PUBG) Imitation Game's Proto Type.☆16Aug 12, 2018Updated 7 years ago
- Windows平台下的细粒度污点分析工具☆49Mar 16, 2017Updated 8 years ago
- ☆31Jan 4, 2018Updated 8 years ago
- just an lite AntiRootkit for interesting☆24Dec 9, 2015Updated 10 years ago
- ☆17Mar 3, 2016Updated 9 years ago
- ☆63Apr 13, 2017Updated 8 years ago
- Windows MITM proxy for proprietary miners☆14Nov 13, 2017Updated 8 years ago
- ☆22May 25, 2017Updated 8 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆76Jun 8, 2019Updated 6 years ago
- PoC of BOOST-ed _EPROCESS.VadRoot iterating☆27May 21, 2014Updated 11 years ago
- A PoC for CVE-2018-7249☆15Apr 29, 2025Updated 10 months ago
- The Network project is a C++ encapsulation of WinSock2 to form a lightweight network library; The Graphics project is a C++ encapsulation…☆13Oct 31, 2017Updated 8 years ago
- Windows 10 kernel and ntdll internal types, directly compatible with ida.☆53Oct 14, 2018Updated 7 years ago
- A Fuzzer for Windows NDIS Drivers OID Handlers☆96Nov 4, 2021Updated 4 years ago
- Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis☆45Sep 16, 2017Updated 8 years ago
- ☆36Mar 22, 2017Updated 8 years ago
- A MITM proxy server for reflective DLL injection through WinINet☆16May 1, 2018Updated 7 years ago
- Implement communication between c++ and javascript with IWebBrowser2☆21Jan 5, 2025Updated last year
- This project has been moved from a private repository☆26Jun 4, 2018Updated 7 years ago
- ☆10Jul 30, 2017Updated 8 years ago
- Lists work items being queued currently.☆14Jun 7, 2015Updated 10 years ago
- An IdaPython tool for getting syscall's ID and function name from ntdll.dll, user32.dll, and so on.☆13Oct 2, 2016Updated 9 years ago