Alternatives and similar repositories for clfs-docs

Users that are interested in clfs-docs are comparing it to the libraries listed below

• waleedassar / SimpleNTSyscallFuzzer
  ☆145Updated last year
• synacktiv / Windows-kernel-SegmentHeap-Aligned-Chunk-Confusion
  PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap
  ☆211Updated 5 years ago
• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆205Updated 5 months ago
• waleedassar / RestrictedKernelLeaks
  ☆163Updated 4 years ago
• Signal-Labs / IOCTLDump
  ☆147Updated 2 years ago
• yardenshafir / IoRingReadWritePrimitive
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆237Updated 3 years ago
• commial / ttd-bindings
  Bindings for Microsoft WinDBG TTD
  ☆233Updated 2 years ago
• thalium / ida_kmdf
  ☆80Updated 7 months ago
• vp777 / Windows-Non-Paged-Pool-Overflow-Exploitation
  Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…
  ☆241Updated 3 years ago
• vportal / HEVD
  HackSysExtremeVulnerableDriver exploits for latest Windows 10 version
  ☆25Updated 3 years ago
• yardenshafir / PoolViewer
  An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.
  ☆145Updated 2 years ago
• VoidSec / ioctlpus
  IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).
  ☆93Updated 3 years ago
• exploits-forsale / prefetch-tool
  Windows KASLR bypass using prefetch side-channel
  ☆128Updated last year
• 0vercl0k / kdmp-parser
  A Windows kernel dump C++ parser library with Python 3 bindings.
  ☆208Updated last year
• Y3A / winkafl
  Static binary instrumentation for windows kernel drivers, to use with winafl
  ☆76Updated 7 months ago
• IOActive / kmdf_re
  Helper idapython code for reversing kmdf drivers
  ☆74Updated 3 years ago
• lucasg / findrpc
  Idapython script to carve binary for internal RPC structures
  ☆240Updated last year
• tandasat / hvext
  The Windbg extensions to study Hyper-V on Intel and AMD processors.
  ☆167Updated last month
• hugsy / pwn--
  pwn++ is a Windows & Linux library oriented for exploit dev but mostly used to play with modern C++ features
  ☆167Updated 3 months ago
• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆154Updated last year
• vmallet / ida-hex-highlighter
  Hex-Rays Block Highlighter plugin for IDA to highlight if/for/do/switch/while blocks
  ☆62Updated 3 years ago
• Bw3ll / JOP_ROCKET
  This framework enables user to discover JOP gagdets and can automate building a complete JOP chain to bypass DEP. JOP ROCKET is the ultim…
  ☆106Updated last year
• 0xcpu / WinAltSyscallHandler
  Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999
  ☆233Updated 5 years ago
• tinysec / rtypes
  A simple but useful project maybe help you reverse Windows.
  ☆39Updated last year
• hugsy / windbg_js_scripts
  Toy scripts for playing with WinDbg JS API
  ☆241Updated last year
• k0keoyo / SegmentHeapExt
  ☆41Updated 5 years ago
• 0vercl0k / snapshot
  WinDbg extension written in Rust to dump the CPU / memory state of a running VM
  ☆124Updated 3 weeks ago
• 0dayResearchLab / msFuzz
  msFuzz is a coverage-guided fuzzer for Windows kernel drivers that utilizes Intel PT and leverages constraint and dependency analysis to …
  ☆189Updated 4 months ago
• uf0o / PyKD
  PyKD DLLs for x86 and x64 platforms
  ☆17Updated 2 years ago
• SinaKarvandi / windbg2ida
  Windbg2ida lets you dump each step in Windbg then shows these steps in IDA
  ☆74Updated last year