fishstiqz / poolinfoLinks
kernel pool windbg extension
☆84Updated 10 years ago
Alternatives and similar repositories for poolinfo
Users that are interested in poolinfo are comparing it to the libraries listed below
Sorting:
- Simple library to spray the Windows Kernel Pool☆110Updated 5 years ago
- windbg plugin for win32k debugging☆75Updated 5 years ago
- Windbg2ida lets you dump each step in Windbg then shows these steps in IDA☆75Updated last year
- Kernel driver to fuzz Hyper-V hypercalls☆137Updated 6 years ago
- Toolkit for Hyper-V security research☆156Updated 3 years ago
- ☆63Updated 8 years ago
- Sample programs that illustrate how to use Control Flow Guard, VS2015's control flow integrity implementation☆52Updated 8 years ago
- A branch-monitor-based solution for process monitoring.☆133Updated 5 years ago
- IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.☆112Updated last year
- A little WinDbg extension to help dump the state of Win32k Type Isolation structures.☆38Updated 7 years ago
- A fast execution trace symbolizer for Windows.☆131Updated last year
- IDAScript to create Symbol file which can be loaded in WinDbg via AddSyntheticSymbol☆41Updated 11 years ago
- Static unpacker for FinSpy VM☆102Updated 4 years ago
- Windows 10 kernel and ntdll internal types, directly compatible with ida.☆52Updated 6 years ago
- Elevation of privilege detector based on HyperPlatform☆122Updated 8 years ago
- A windbg extension, extracting token related contents☆41Updated 4 years ago
- Windbg extension to find PatchGuard pages☆121Updated 11 years ago
- Windows RPC Python fuzzer☆163Updated 7 years ago
- A fork of AFL for fuzzing Windows binaries☆53Updated 6 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆68Updated 5 years ago
- Windows NT ioctl bruteforcer and modular fuzzer☆123Updated 6 years ago
- Exploits for the win32kfull!bFill vulnerability on Win10 x64 RS2 using Bitmap or Palette techniques☆54Updated 7 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆74Updated 6 years ago
- Python module for Windbg's dbgeng plus additional wrappers.☆76Updated last month
- Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE).☆118Updated 7 years ago
- qb-sync is an open source tool to add some helpful glue between IDA Pro and Windbg. Its core feature is to dynamically synchronize IDA's …☆122Updated 10 years ago
- ☆54Updated 9 years ago
- elgoog/searchme challenge from 34C3 CTF / WCTF 2018: sources & exploit☆68Updated 7 years ago
- PoC for a snapshot-based coverage-guided fuzzer targeting Windows kernel components☆68Updated 4 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub☆80Updated 13 years ago