jthuraisamy / ioctlpus
☆108Updated 4 years ago
Alternatives and similar repositories for ioctlpus:
Users that are interested in ioctlpus are comparing it to the libraries listed below
- Driver Initial Reconnaissance Tool☆122Updated 5 years ago
- FLARE Kernel Shellcode Loader☆176Updated 5 years ago
- ☆67Updated 2 years ago
- Hyper-V Research is trendy now☆177Updated 10 months ago
- Process reimaging proof of concept code☆95Updated 5 years ago
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆88Updated 3 years ago
- Set of antianalysis techniques found in malware☆129Updated last year
- Windows Drivers☆97Updated 5 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆209Updated 5 years ago
- Parsers for custom malware formats ("Funky malware formats")☆93Updated 3 years ago
- Helper idapython code for reversing kmdf drivers☆72Updated 2 years ago
- ☆158Updated 3 years ago
- Simple 32/64-bit PEs loader.☆137Updated 6 years ago
- Local OXID Resolver (LCLOR) : Research and Tooling☆34Updated 3 years ago
- Simple library to spray the Windows Kernel Pool☆107Updated 5 years ago
- Windbg2ida lets you dump each step in Windbg then shows these steps in IDA☆76Updated 8 months ago
- My repository to upload drivers from different books and all the information related to windows internals.☆154Updated 5 years ago
- ☆231Updated 7 years ago
- Windows Kernel Programming☆124Updated 4 years ago
- A modified RunPE (process hollowing) technique avoiding the usage of SetThreadContext by appending a TLS section which calls the original…☆94Updated 5 years ago
- Windows RPC Python fuzzer☆160Updated 7 years ago
- ☆20Updated 5 years ago
- Recon 2015 Presentation from Alex Ionescu☆231Updated 9 years ago
- A simple API monitor for Windbg☆62Updated 7 years ago
- An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.☆136Updated 2 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆293Updated 6 years ago
- Toy scripts for playing with WinDbg JS API☆223Updated 8 months ago
- Windows NT ioctl bruteforcer and modular fuzzer☆121Updated 6 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆104Updated 4 years ago
- A novel technique to communicate between threads using the standard ETHREAD structure☆110Updated 4 years ago