kkamagui / shadow-box-for-x86View external linksLinks
Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)
☆188Jun 24, 2019Updated 6 years ago
Alternatives and similar repositories for shadow-box-for-x86
Users that are interested in shadow-box-for-x86 are comparing it to the libraries listed below
Sorting:
- Shadow-Box: Lightweight and Practical Kernel Protector for ARM (Presented at BlackHat Asia 2018)☆73Jun 5, 2018Updated 7 years ago
- ☆12Feb 19, 2017Updated 8 years ago
- A Public-domain C header file for x86 MSR (Model Specific Register) addresses, and a naive generator of it.☆14Dec 17, 2017Updated 8 years ago
- deprecated☆27Mar 20, 2019Updated 6 years ago
- Elevation of privilege detector based on HyperPlatform☆124Mar 5, 2017Updated 8 years ago
- Old exploits and code for my self-referencing PML4 technique (2014)☆32May 8, 2015Updated 10 years ago
- A project that aims to automatically devirtualize code that has been virtualized using x86virt☆126Dec 3, 2022Updated 3 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22May 31, 2017Updated 8 years ago
- Detecting execution of kernel memory where is not backed by any image file☆262Jul 11, 2018Updated 7 years ago
- ☆30May 23, 2017Updated 8 years ago
- ☆14Feb 27, 2017Updated 8 years ago
- CVE-2017-5689 Proof-of-Concept exploit☆57Jul 27, 2017Updated 8 years ago
- PE32 binary + W32 payload☆11Jul 23, 2017Updated 8 years ago
- deprecated☆46Mar 20, 2019Updated 6 years ago
- Internet Explorer Exploit with CFG bypass for Windows 10☆59Jan 11, 2017Updated 9 years ago
- public bugs/proof of concepts☆50Mar 10, 2021Updated 4 years ago
- IDA反-反调试插件 IDAStealth v1.3.3, created 06/28/2011, Jan Newger☆21Apr 4, 2018Updated 7 years ago
- ☆14Jan 10, 2017Updated 9 years ago
- ☆14Aug 15, 2018Updated 7 years ago
- API logger plugin for Intel Pintool☆14Nov 19, 2017Updated 8 years ago
- ☆24Nov 17, 2017Updated 8 years ago
- Rootkit Detector for UNIX☆61Aug 11, 2023Updated 2 years ago
- ☆17Mar 3, 2016Updated 9 years ago
- ☆63Apr 13, 2017Updated 8 years ago
- An aggregate of tools used in the core of vmp_dbg plus other parsing utils to parse vmp bc.☆16Oct 18, 2016Updated 9 years ago
- Hypervisor based tool for monitoring system register accesses.☆153Sep 13, 2018Updated 7 years ago
- Notes my learning steps about Windows-NT☆23May 18, 2017Updated 8 years ago
- WIP - Play with Intel VM Extensions☆23Jun 12, 2017Updated 8 years ago
- TLB splitting VMM☆169May 17, 2016Updated 9 years ago
- an efficient yet easy to use network packet builder and parser☆11Jul 3, 2017Updated 8 years ago
- Wow64 syscall hook☆42May 28, 2017Updated 8 years ago
- Microsoft Office / COM Object DLL Planting☆15May 14, 2016Updated 9 years ago
- A sample project for using Capstone from a driver in Visual Studio 2015☆36May 4, 2016Updated 9 years ago
- ☆190Oct 25, 2017Updated 8 years ago
- hook msr by amd svm☆125Dec 30, 2019Updated 6 years ago
- hidusb.sys source code, Windows 10 hidusb.sys fully reversed☆35Jun 15, 2017Updated 8 years ago
- A fast, hackable and simple x64 VT-x hypervisor for Windows and Linux. Builtin userspace sandbox and introspection engine.☆857Oct 20, 2021Updated 4 years ago
- PoC☆212Jan 13, 2025Updated last year
- Test code only. Not reliable for actual use.☆63Jan 1, 2016Updated 10 years ago