koutto / ioctlbfLinks
Windows Kernel Drivers fuzzer
☆377Updated 8 years ago
Alternatives and similar repositories for ioctlbf
Users that are interested in ioctlbf are comparing it to the libraries listed below
Sorting:
- Examples of leaking Kernel Mode information from User Mode on Windows☆628Updated 8 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆309Updated 7 years ago
- Research on Windows Kernel Executive Callback Objects☆314Updated 5 years ago
- Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits☆414Updated 6 years ago
- CFB is a ProcMon-style tool designed to assist capturing IRPs sent to Windows drivers.☆333Updated last year
- DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.☆373Updated 6 years ago
- PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap☆214Updated 5 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆438Updated 7 years ago
- Idapython script to carve binary for internal RPC structures☆239Updated last year
- A bunch of JavaScript extensions for WinDbg.☆363Updated last year
- Have fun with the LowFragmentationHeap☆253Updated 4 years ago
- Dump of win32k POCs for bugs I've found☆380Updated 3 years ago
- Windows NT x64 syscall fuzzer☆631Updated 2 weeks ago
- Toy scripts for playing with WinDbg JS API☆244Updated last year
- ☆408Updated 8 years ago
- Automatically exported from code.google.com/p/ioctlfuzzer☆171Updated 10 years ago
- This project provides a collection of Microsoft Windows kernel structures, unions and enumerations. Most of them are not officially docum…☆231Updated 2 months ago
- awesome-windows-security-development☆177Updated 7 years ago
- windows syscall table from xp ~ 10 rs4☆356Updated 7 years ago
- Windows RPC Python fuzzer☆164Updated 8 years ago
- The goal of the tool is to monitor requests received by selected device objects or kernel drivers. The tool is quite similar to IrpTracke…☆406Updated last year
- A small, null-free Windows shellcode that executes calc.exe (x86/x64, all OS/SPs)☆442Updated last year
- A collection of LLVM transform and analysis passes to write shellcode in regular C☆381Updated 2 years ago
- My personal cheat sheet for using WinDbg for kernel debugging☆451Updated 9 months ago
- A curated list of Hyper-V exploitation resources, fuzzing and vulnerability research.☆438Updated 9 months ago
- MemoryRanger protects kernel data and code by running drivers and hosting data in isolated kernel enclaves using VT-x and EPT features. M…☆230Updated 5 years ago
- Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…☆257Updated 3 years ago
- POC for cve-2019-1458☆178Updated 4 years ago
- This driver implements the Intel Processor Trace functionality in Intel Skylake architecture for Microsoft Windows☆463Updated 7 years ago
- The Windows Library for Intel Process Trace (WinIPT) is a project that leverages the new Intel Processor Trace functionality exposed by W…☆404Updated 2 years ago