gerhart01 / HyperV-sockets

Related projects ⓘ

Alternatives and complementary repositories for HyperV-sockets

• MortenSchenk / Privilege_Shellcode
  Kernel Shellcode to add all privileges in token
  ☆13Updated 7 years ago
• changeofpace / Remote-Process-Cookie-for-Windows-7
  Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.
  ☆21Updated 7 years ago
• IgorKorkin / AllMemProTestBed
  Legal access: The driver and console app to demonstrate the basic memory access in kernel mode
  ☆9Updated 6 years ago
• cloudbase / HyperVPCapExt
  Hyper-V virtual switch packet capturing extension with libpcap / Wireshark format
  ☆12Updated 10 years ago
• coldshell / IDA-appcall
  ☆13Updated 7 years ago
• int0 / pinlog
  API logger plugin for Intel Pintool
  ☆14Updated 7 years ago
• NtRaiseHardError / Providence
  Kernel-mode file scanner
  ☆17Updated 6 years ago
• MortenSchenk / tagWnd-Hardening-Bypass
  Bypass for the hardening against usage of tagWnd as a kernel read/write primitive
  ☆26Updated 7 years ago
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆34Updated 7 years ago
• mgeeky / prc_xchk
  User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.
  ☆18Updated 8 years ago
• d35ha / xKeLogger
  Kernel mode windows NT API logger
  ☆21Updated 5 years ago
• Darkabode / possessor
  User-mode part of Zerokit platform
  ☆20Updated 5 years ago
• 0xcpu / exthost
  A POC for Windows Extension Host hooking
  ☆22Updated 5 years ago
• almost-real / IDBG
  Allows you to add breakpoints from IDA (from the graph/text view) to WinDbg easily
  ☆14Updated 6 years ago
• papadp / shd
  Ssdt Hook Detection tool
  ☆12Updated 8 years ago
• everdox / pintools
  Contains various pintools to supplement the Intel DBI framework
  ☆12Updated 9 years ago
• n3k / misc_exploits_pocs
  Miscellaneous old Exploit code and PoCs
  ☆15Updated last month
• deroko / activationcontexthook
  ☆33Updated 7 years ago
• JKornev / cfgdump
  Windbg extension that allows you analyze Control Flow Guard map
  ☆36Updated 3 years ago
• AzureGreen / WinNT-Learning
  Notes my learning steps about Windows-NT
  ☆22Updated 7 years ago
• majdi / deadlands
  🐧 A simple kernel-level rootkit
  ☆19Updated 8 years ago
• nihilus / WhatAPIs
  IDA WhatAPIs PlugIn
  ☆7Updated 9 years ago
• Darkabode / amte
  Analysis and Modification Tool for Executables
  ☆16Updated 5 years ago
• aaaddress1 / APCInjector-BYPASS-AV
  ☆18Updated 9 years ago
• guidoreina / http_inspect
  HTTP/HTTPS/DNS inspector (windows driver)
  ☆24Updated 5 years ago
• Darkabode / 0lib
  Zerokit shared code
  ☆16Updated 5 years ago
• Microwave89 / win7-x64-ndk
  Native Development Kit for Vista 64bit And Later, by me, Based on NDK Headers 1.0, by Alex Ionescu
  ☆16Updated 8 years ago
• gabriellandau / CISpotter
  Code Integrity Violation Spotter
  ☆17Updated 5 months ago