Alternatives and similar repositories for defender-mpengine-fuzzing

Users that are interested in defender-mpengine-fuzzing are comparing it to the libraries listed below

• tyranid / windows-memory-access-traps
  A few examples of how to trap virtual memory access on Windows.
  ☆34Updated 9 months ago
• MrAle98 / ATDCM64a-LPE
  ☆20Updated 8 months ago
• airbus-cert / ttd2mdmp
  Extract data of TTD trace file to a minidump
  ☆30Updated 2 years ago
• Signal-Labs / Hotpatching_PoC
  ☆22Updated 2 years ago
• SpiralBL0CK / CVE-2024-40431-CVE-2022-25479-EOP-CHAIN
  CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)
  ☆45Updated 11 months ago
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆32Updated 2 years ago
• Azvanzed / vmw-logger-rs
  A VMWare logger using built-in backdoor.
  ☆29Updated 11 months ago
• Slowerzs / KeyJumper
  ☆50Updated 6 months ago
• jayesther / KTM_POCS
  Reports and POCs for CVE 2024-43570 and CVE-2024-43535
  ☆27Updated 4 months ago
• Wa1nut4 / CVE-2024-26230
  LPE of CVE-2024-26230
  ☆24Updated last year
• jsacco / PPL_Bypass
  ☆11Updated 3 years ago
• rbmm / Noname
  really ?
  ☆12Updated last year
• bananabr / Givemeahand
  A PoC tool for exploiting leaked process and thread handles
  ☆32Updated last year
• uf0o / Counterfeit_Object_Oriented_Programming_COOP
  ☆13Updated 11 months ago
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆26Updated 2 years ago
• bluefrostsecurity / Windows-Drive-Remapping-EoP
  ☆32Updated last year
• 3dnow / NtCreateLowBoxToken
  A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering
  ☆41Updated 3 months ago
• RomanRybachek / CVE-2024-20698
  Analysis of the vulnerability
  ☆51Updated last year
• trailofbits / WinDbg-JS
  ☆25Updated last year
• jackullrich / Windows-API-Fuzzer
  Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.
  ☆99Updated 5 years ago
• synacktiv / windows_kernel_shadow_stack
  Proof of concepts demonstrating some aspects of the Windows kernel shadow stack mitigation.
  ☆50Updated 4 months ago
• UmaRex01 / HookSentry
  Check if your AV/EDR does inline hooking, displays the hooked functions and allows you to compare them with the original ones.
  ☆35Updated 5 months ago
• connormcgarr / SkBridge
  Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1
  ☆51Updated last month
• the-deniss / Vulnerability-Disclosures
  Vulnerability analysis and proof of concepts
  ☆37Updated 2 years ago
• yo-yo-yo-jbo / anti_debugging_intro
  ☆26Updated 2 years ago
• FuzzySecurity / BulkBindex
  Winbindex bot to pull in binaries for specific releases
  ☆48Updated 2 years ago
• C5Hackr / c_syscalls
  https://github.com/janoglezcampos/c_syscalls with the ASM rewritten by myself for Visual Studio's Compiler.
  ☆29Updated last year
• X-C3LL / memdlopen-lib
  ☆12Updated 2 years ago
• CyberCX-STA / Peep
  A tool designed to hook into Windows applications and output named (and anonymous?) pipe traffic.
  ☆13Updated last year
• zeze-zeze / HITCON-2023-Demo-CVE-2023-20562
  ☆61Updated 2 years ago