Set of tools to analyze Windows sandboxes for exposed attack surface.
☆2,276Nov 6, 2025Updated 4 months ago
Alternatives and similar repositories for sandbox-attacksurface-analysis-tools
Users that are interested in sandbox-attacksurface-analysis-tools are comparing it to the libraries listed below
Sorting:
- ☆842Dec 13, 2022Updated 3 years ago
- A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container☆1,379Dec 9, 2024Updated last year
- RpcView is a free tool to explore and decompile Microsoft RPC interfaces☆1,049Sep 24, 2023Updated 2 years ago
- A fork of AFL for fuzzing Windows binaries☆2,545Mar 13, 2026Updated last week
- This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System f…☆285May 14, 2020Updated 5 years ago
- Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode☆2,511Nov 15, 2023Updated 2 years ago
- HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux☆2,965Feb 24, 2025Updated last year
- ☆234Sep 10, 2017Updated 8 years ago
- Windows Object Explorer 64-bit☆1,893Mar 9, 2026Updated last week
- A tool to create a JScript file which loads a .NET v2 assembly from memory.☆1,318Jan 18, 2021Updated 5 years ago
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,576Oct 31, 2025Updated 4 months ago
- A Coverage Explorer for Reverse Engineers☆2,513Feb 14, 2026Updated last month
- LSASS memory dumper using direct system calls and API unhooking.☆1,579Jan 5, 2021Updated 5 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆437Aug 22, 2018Updated 7 years ago
- Token Privilege Research☆873Sep 1, 2017Updated 8 years ago
- Windows RPC Python fuzzer☆164Nov 14, 2017Updated 8 years ago
- Security Research from the Microsoft Security Response Center (MSRC)☆1,379Aug 8, 2024Updated last year
- A tool to elevate privilege with Windows Tokens☆1,063Oct 6, 2023Updated 2 years ago
- Defeating Windows User Account Control☆7,428Feb 17, 2026Updated last month
- AV/EDR evasion via direct system calls.☆1,999Jan 1, 2023Updated 3 years ago
- My musings with PowerShell☆2,707Nov 19, 2021Updated 4 years ago
- DOM fuzzer☆1,769Nov 26, 2024Updated last year
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆4,491Jul 8, 2025Updated 8 months ago
- Also known by Microsoft as Knifecoat☆1,152Dec 22, 2022Updated 3 years ago
- Examples of leaking Kernel Mode information from User Mode on Windows☆635Jul 7, 2017Updated 8 years ago
- Detect, analyze and uniquely identify crashes in Windows applications☆523May 23, 2025Updated 9 months ago
- Converts PE into a shellcode☆2,752Aug 30, 2025Updated 6 months ago
- A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from …☆1,088Jul 26, 2021Updated 4 years ago
- A JavaScript Engine Fuzzer☆2,167Updated this week
- Project Zero Docs and Tools☆844Feb 4, 2026Updated last month
- A tool to exploit .NET Remoting Services☆534Jul 31, 2024Updated last year
- Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS☆1,649Oct 11, 2018Updated 7 years ago
- Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loadi…☆3,243Sep 3, 2022Updated 3 years ago
- Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.☆6,885Mar 1, 2026Updated 2 weeks ago
- Process Injection☆768Oct 24, 2021Updated 4 years ago
- Diaphora, the most advanced Free and Open Source program diffing tool.☆4,208Nov 24, 2024Updated last year
- Cross Platform Kernel Fuzzer Framework☆457Oct 11, 2018Updated 7 years ago
- Payload Generation Framework☆1,976Aug 21, 2024Updated last year
- WinDBG Anti-RootKit Extension☆646Jul 29, 2020Updated 5 years ago