Loading unsigned code into kernel in Windows 10 (64) with help of VMware Workstation Pro/Player design flaw
☆141Apr 4, 2017Updated 8 years ago
Alternatives and similar repositories for vmw_vmx_overloader
Users that are interested in vmw_vmx_overloader are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- PCAUSA Rawether for Windows Local Privilege Escalation☆39Mar 15, 2017Updated 9 years ago
- kernel exploitation helper class☆77Nov 26, 2016Updated 9 years ago
- Wow64 syscall hook☆43May 28, 2017Updated 8 years ago
- ☆14Jan 10, 2017Updated 9 years ago
- ☆52Sep 15, 2016Updated 9 years ago
- Internet Explorer Exploit with CFG bypass for Windows 10☆60Jan 11, 2017Updated 9 years ago
- ☆408Mar 1, 2017Updated 9 years ago
- An aggregate of tools used in the core of vmp_dbg plus other parsing utils to parse vmp bc.☆16Oct 18, 2016Updated 9 years ago
- Helper utility for debugging windows PE/PE+ loader.☆52Mar 15, 2015Updated 11 years ago
- 虚拟机逃逸exp工具 VMware Escape Exploit before VMware WorkStation 12.5.5☆10Sep 10, 2017Updated 8 years ago
- ☆30May 23, 2017Updated 8 years ago
- MSI NTIOLib/WinIO Local Privilege Escalation exploit☆96Sep 26, 2016Updated 9 years ago
- WIP - Play with Intel VM Extensions☆23Jun 12, 2017Updated 8 years ago
- A branch-monitor-based solution for process monitoring.☆138Feb 9, 2020Updated 6 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆23May 31, 2017Updated 8 years ago
- The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers☆34Mar 13, 2017Updated 9 years ago
- This driver implements the Intel Processor Trace functionality in Intel Skylake architecture for Microsoft Windows☆466Apr 17, 2018Updated 7 years ago
- Analyze and attack windows applications using dll hijacking vulnerabilities☆58Sep 22, 2019Updated 6 years ago
- Kernel mode driver loader, injecting into the windows kernel, Rootkit. Driver injections.☆47Nov 9, 2014Updated 11 years ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆78Aug 12, 2015Updated 10 years ago
- An exploit for CVE-2016-7255 on Windows 7/8/8.1/10(pre-anniversary) 64 bit☆82Mar 9, 2017Updated 9 years ago
- PLASMA PULSAR☆70May 19, 2017Updated 8 years ago
- Translates WinDbg "dt" structure dump to a C structure☆133Oct 16, 2016Updated 9 years ago
- I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016☆172Dec 7, 2016Updated 9 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆57Jun 21, 2016Updated 9 years ago
- IDA Pomidor is a plugin for Hex-Ray's IDA Pro disassembler that will help you retain concentration and productivity during long reversing…☆35Sep 23, 2014Updated 11 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆37Jul 8, 2024Updated last year
- nyā☆71Oct 16, 2015Updated 10 years ago
- ☆34Sep 22, 2017Updated 8 years ago
- ☆12Feb 19, 2017Updated 9 years ago
- Elevation of privilege detector based on HyperPlatform☆124Mar 5, 2017Updated 9 years ago
- windows syscall table from xp ~ 10 rs4☆355Jun 8, 2018Updated 7 years ago
- Hidden kernel mode code execution for bypassing modern anti-rootkits.☆85Dec 23, 2010Updated 15 years ago
- Hypervisor based tool for monitoring system register accesses.☆155Sep 13, 2018Updated 7 years ago
- windows create process with a dll load first time via LdrHook☆31Oct 21, 2016Updated 9 years ago
- An Ark tool project,run on Win7 x86/x64☆118Jul 11, 2017Updated 8 years ago
- more at http://www.zer0mem.sk/?p=271☆12Jun 11, 2013Updated 12 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆79Jan 24, 2011Updated 15 years ago
- ☆16Jan 14, 2016Updated 10 years ago