fishstiqz / poolinfo
kernel pool windbg extension
☆80Updated 9 years ago
Alternatives and similar repositories for poolinfo:
Users that are interested in poolinfo are comparing it to the libraries listed below
- Simple library to spray the Windows Kernel Pool☆107Updated 5 years ago
- Kernel driver to fuzz Hyper-V hypercalls☆136Updated 6 years ago
- windbg plugin for win32k debugging☆73Updated 5 years ago
- ☆62Updated 7 years ago
- Windbg2ida lets you dump each step in Windbg then shows these steps in IDA☆76Updated 8 months ago
- A little WinDbg extension to help dump the state of Win32k Type Isolation structures.☆38Updated 7 years ago
- elgoog/searchme challenge from 34C3 CTF / WCTF 2018: sources & exploit☆67Updated 6 years ago
- A windbg extension, extracting token related contents☆41Updated 4 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub☆76Updated 12 years ago
- Windows NT ioctl bruteforcer and modular fuzzer☆121Updated 6 years ago
- Windows RPC Python fuzzer☆160Updated 7 years ago
- A Fuzzer for Windows NDIS Drivers OID Handlers☆93Updated 3 years ago
- Internet Explorer Exploit with CFG bypass for Windows 10☆55Updated 8 years ago
- Toolkit for Hyper-V security research☆156Updated 3 years ago
- PoC for a snapshot-based coverage-guided fuzzer targeting Windows kernel components☆68Updated 3 years ago
- IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.☆108Updated last year
- IDAScript to create Symbol file which can be loaded in WinDbg via AddSyntheticSymbol☆40Updated 10 years ago
- Elevation of privilege detector based on HyperPlatform☆120Updated 8 years ago
- ☆47Updated 2 years ago
- This IDAPython script tags subroutines according to their use of imported functions☆72Updated 3 years ago
- ☆89Updated 5 years ago
- Windbg extension to find PatchGuard pages☆118Updated 10 years ago
- Exploits for the win32kfull!bFill vulnerability on Win10 x64 RS2 using Bitmap or Palette techniques☆54Updated 7 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆73Updated 5 years ago
- A fast execution trace symbolizer for Windows.☆130Updated 10 months ago
- Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE).☆116Updated 6 years ago
- ☆87Updated 9 years ago
- qb-sync is an open source tool to add some helpful glue between IDA Pro and Windbg. Its core feature is to dynamically synchronize IDA's …☆119Updated 9 years ago
- Sample programs that illustrate how to use Control Flow Guard, VS2015's control flow integrity implementation☆48Updated 8 years ago
- A DBI tool to discover heap memory related bugs☆125Updated 6 years ago