ivildeed / vmw_vmx_overloader

Related projects ⓘ

Alternatives and complementary repositories for vmw_vmx_overloader

• rwfpl / rewolf-gogogadget
  kernel exploitation helper class
  ☆75Updated 7 years ago
• tandasat / EopMon
  Elevation of privilege detector based on HyperPlatform
  ☆117Updated 7 years ago
• DavidKorczynski / RePEconstruct
  ☆91Updated 8 years ago
• honorarybot / PulseDbg
  Hypervisor-based debugger
  ☆185Updated 3 years ago
• tandasat / findpg
  Windbg extension to find PatchGuard pages
  ☆117Updated 10 years ago
• quarkslab / qb-sync
  qb-sync is an open source tool to add some helpful glue between IDA Pro and Windbg. Its core feature is to dynamically synchronize IDA's …
  ☆116Updated 9 years ago
• tandasat / WinIoCtlDecoder
  IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.
  ☆105Updated 11 months ago
• FSecureLABS / win_driver_plugin
  A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.
  ☆422Updated 6 years ago
• tandasat / GuardMon
  Hypervisor based tool for monitoring system register accesses.
  ☆141Updated 6 years ago
• JeremyWildsmith / x86devirt
  A project that aims to automatically devirtualize code that has been virtualized using x86virt
  ☆125Updated last year
• sogeti-esec-lab / LKD
  Local Kernel Debugger (LKD) is a python wrapper around dbgengine.dll
  ☆92Updated 8 years ago
• tandasat / scripts_for_RE
  Python scripts for reverse engineering.
  ☆179Updated 3 years ago
• waleedassar / antidebug
  Collection Of Anti-Debugging Tricks
  ☆96Updated 8 years ago
• ufrisk / kaslrfinder
  Kernel Address Space Layout Randomization (KASLR) Recovery Software
  ☆97Updated 7 years ago
• tandasat / PgResarch
  PatchGuard Research
  ☆292Updated 6 years ago
• quangnh89 / OllyCapstone
  This is a plugin for OllyDbg 1.10 to replace the old disasm engine by Capstone disassembly/disassembler framework.
  ☆80Updated 9 years ago
• IOActive / I-know-where-your-page-lives
  I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016
  ☆159Updated 7 years ago
• Cisco-Talos / FIRST
  ☆99Updated 5 months ago
• marcusbotacin / BranchMonitoringProject
  A branch-monitor-based solution for process monitoring.
  ☆128Updated 4 years ago
• ionescu007 / HookingNirvana
  Recon 2015 Presentation from Alex Ionescu
  ☆232Updated 8 years ago
• AndreyBazhan / SymStore
  The history of Windows Internals via symbols.
  ☆177Updated 3 years ago
• 0xPhoeniX / MazeWalker
  Toolkit for enriching and speeding up static malware analysis
  ☆165Updated 2 years ago
• tandasat / MemoryMon
  Detecting execution of kernel memory where is not backed by any image file
  ☆252Updated 6 years ago
• MalwareTech / BasicHook
  x86 Inline hooking engine (using trampolines)
  ☆92Updated 9 years ago
• Rootkitsmm-zz / Win32k-Fuzzer
  Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )
  ☆132Updated 8 years ago
• nccgroup / DriverBuddy
  DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.
  ☆352Updated 4 years ago
• zer0fl4g / DebugDetector
  ☆115Updated 12 years ago