jthuraisamy / ioctlpusLinks
☆116Updated 4 years ago
Alternatives and similar repositories for ioctlpus
Users that are interested in ioctlpus are comparing it to the libraries listed below
Sorting:
- Driver Initial Reconnaissance Tool☆123Updated 5 years ago
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆89Updated 3 years ago
- Process reimaging proof of concept code☆96Updated 6 years ago
- Hyper-V Research is trendy now☆181Updated last year
- ☆68Updated 3 years ago
- FLARE Kernel Shellcode Loader☆178Updated 6 years ago
- Simple 32/64-bit PEs loader.☆138Updated 6 years ago
- ☆127Updated 8 months ago
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- Windows Drivers☆99Updated 6 years ago
- A tool to exploit .NET DCOM for EoP and RCE. Is fixed in latest versions of the .NET.☆91Updated 10 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆219Updated 5 years ago
- Set of antianalysis techniques found in malware☆132Updated last year
- Local OXID Resolver (LCLOR) : Research and Tooling☆35Updated 4 years ago
- ☆161Updated 3 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆123Updated 4 years ago
- Windbg2ida lets you dump each step in Windbg then shows these steps in IDA☆75Updated 11 months ago
- Helper idapython code for reversing kmdf drivers☆72Updated 2 years ago
- File system minifilter driver for Windows to block symbolic link attacks.☆51Updated 4 years ago
- Ebfuscator: Abusing system errors for binary obfuscation☆52Updated 5 years ago
- Simple library to spray the Windows Kernel Pool☆109Updated 5 years ago
- Windows NT ioctl bruteforcer and modular fuzzer☆123Updated 6 years ago
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆143Updated 6 years ago
- An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.☆139Updated 2 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆300Updated 6 years ago
- Recon 2015 Presentation from Alex Ionescu☆239Updated 9 years ago
- Enumerate user mode shared memory mappings on Windows.☆121Updated 4 years ago
- Bare template for a Kernel Mode Driver☆51Updated 5 years ago
- A simple API monitor for Windbg☆63Updated 8 years ago
- SentinelOne's KeRnel Exploits Advanced Mitigations☆54Updated 6 years ago