jjensn / CVE-2024-36877
Exploit POC for CVE-2024-36877
☆46Updated 8 months ago
Alternatives and similar repositories for CVE-2024-36877:
Users that are interested in CVE-2024-36877 are comparing it to the libraries listed below
- Report and exploit of CVE-2023-36427☆90Updated last year
- Different tools for Microsoft Hyper-V researching☆52Updated 10 months ago
- A simple but useful project maybe help you reverse Windows.☆36Updated last year
- Windows kernel debugger for Linux hosts running Windows under KVM/QEMU☆73Updated 5 months ago
- call gates as stable comunication channel for NT x86 and Linux x86_64☆31Updated last year
- Remove WPP calls from hexrays decompiled code☆45Updated 3 weeks ago
- Report and exploit of CVE-2024-21305.☆34Updated last year
- PEIM (UEFI) bootkit targeting OVMF (EDK2)☆34Updated last year
- A thin introspection hypervisor framework that allows for low level resource manipulation.☆13Updated last year
- A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.☆27Updated 2 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆63Updated last year
- Example of building an application verifer DLL☆46Updated 10 months ago
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆72Updated last year
- WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API☆22Updated 3 years ago
- Windows KASLR bypass using prefetch side-channel☆89Updated last year
- An x64dbg plugin which helps make sense of long C++ symbols☆59Updated last year
- Finding Truth in the Shadows☆89Updated 2 years ago
- Another UEFI runtime bootkit☆29Updated last year
- A few examples of how to trap virtual memory access on Windows.☆29Updated 4 months ago
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆53Updated 2 years ago
- Generate a PDB file given the old PDB file and an address mapping☆46Updated last month
- Exploiting ring0 memcpy-like functionality to disable Driver Signing Enforcement (DSE)☆20Updated 5 years ago
- Portable & Custmizable Windows Defender☆12Updated 3 years ago
- ☆59Updated 2 years ago
- Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures☆34Updated 7 months ago
- A journal for $6,000 Riot Vanguard bounty.☆63Updated last year
- ☆20Updated 3 months ago
- ☆38Updated last year
- devirtualization vmprotect☆62Updated 2 years ago
- An example of how to use Microsoft Windows Warbird technology☆27Updated 2 years ago