gdabah / win32k-bugs
Dump of win32k POCs for bugs I've found
☆371Updated 3 years ago
Alternatives and similar repositories for win32k-bugs:
Users that are interested in win32k-bugs are comparing it to the libraries listed below
- Canadian Furious Beaver is a ProcMon-style tool designed only for capturing IRPs sent to any Windows driver.☆317Updated last year
- Examples of leaking Kernel Mode information from User Mode on Windows☆595Updated 7 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆294Updated 6 years ago
- A curated list of Hyper-V exploitation resources, fuzzing and vulnerability research.☆401Updated 4 years ago
- Windows Kernel Drivers fuzzer☆339Updated 8 years ago
- Idapython script to carve binary for internal RPC structures☆231Updated last year
- ☆232Updated 7 years ago
- Extract Windows Defender database from vdm files and unpack it☆437Updated 5 years ago
- Toy scripts for playing with WinDbg JS API☆225Updated 8 months ago
- A bunch of JavaScript extensions for WinDbg.☆331Updated 3 months ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆430Updated 6 years ago
- Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits☆389Updated 5 years ago
- Expriments☆452Updated 5 months ago
- Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…☆220Updated 2 years ago
- My repository to upload drivers from different books and all the information related to windows internals.☆156Updated 5 years ago
- collect for learning cases☆580Updated 9 months ago
- Research on Windows Kernel Executive Callback Objects☆285Updated 5 years ago
- This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System f…☆273Updated 4 years ago
- Checksec, but for Windows: static detection of security mitigations in executables☆581Updated 2 months ago
- DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.☆358Updated 5 years ago
- Quickly debug shellcode extracted during malware analysis☆594Updated last year
- FLARE Kernel Shellcode Loader☆176Updated 5 years ago
- POC for cve-2019-1458☆172Updated 3 years ago
- DEFCON 27 workshop - Modern Debugging with WinDbg Preview☆719Updated 4 months ago
- windows syscall table from xp ~ 10 rs4☆353Updated 6 years ago
- PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap☆200Updated 4 years ago
- My personal cheat sheet for using WinDbg for kernel debugging☆410Updated 5 months ago
- Have fun with the LowFragmentationHeap☆236Updated 4 years ago
- The history of Windows Internals via symbols.☆177Updated 3 years ago
- Internals information about Hyper-V☆688Updated 2 months ago