koutto / ioctlbfLinks
Windows Kernel Drivers fuzzer
☆376Updated 8 years ago
Alternatives and similar repositories for ioctlbf
Users that are interested in ioctlbf are comparing it to the libraries listed below
Sorting:
- Examples of leaking Kernel Mode information from User Mode on Windows☆624Updated 8 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆308Updated 7 years ago
- CFB is a ProcMon-style tool designed to assist capturing IRPs sent to Windows drivers.☆334Updated last year
- Research on Windows Kernel Executive Callback Objects☆312Updated 5 years ago
- Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits☆411Updated 5 years ago
- Dump of win32k POCs for bugs I've found☆382Updated 3 years ago
- Idapython script to carve binary for internal RPC structures☆239Updated last year
- PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap☆212Updated 5 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆438Updated 7 years ago
- A bunch of JavaScript extensions for WinDbg.☆357Updated last year
- Windows RPC Python fuzzer☆162Updated 8 years ago
- A small, null-free Windows shellcode that executes calc.exe (x86/x64, all OS/SPs)☆435Updated last year
- Automatically exported from code.google.com/p/ioctlfuzzer☆171Updated 10 years ago
- ☆405Updated 8 years ago
- DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.☆370Updated 5 years ago
- awesome-windows-security-development☆175Updated 7 years ago
- Have fun with the LowFragmentationHeap☆252Updated 4 years ago
- Windows NT x64 syscall fuzzer☆628Updated 3 weeks ago
- Toy scripts for playing with WinDbg JS API☆242Updated last year
- A curated list of Hyper-V exploitation resources, fuzzing and vulnerability research.☆437Updated 8 months ago
- Extract Windows Defender database from vdm files and unpack it☆472Updated 4 months ago
- This project provides a collection of Microsoft Windows kernel structures, unions and enumerations. Most of them are not officially docum…☆228Updated last month
- The goal of the tool is to monitor requests received by selected device objects or kernel drivers. The tool is quite similar to IrpTracke…☆402Updated 11 months ago
- MemoryRanger protects kernel data and code by running drivers and hosting data in isolated kernel enclaves using VT-x and EPT features. M…☆230Updated 5 years ago
- Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…☆253Updated 3 years ago
- The Windows Library for Intel Process Trace (WinIPT) is a project that leverages the new Intel Processor Trace functionality exposed by W…☆402Updated 2 years ago
- An extensible framework for easily writing compiler optimized position independent x86 / x64 shellcode for windows platforms.☆530Updated 5 months ago
- Public repository for windbglib, a wrapper around pykd.pyd (for Windbg), used by mona.py☆333Updated 3 years ago
- POC for cve-2019-1458☆177Updated 3 years ago
- Local privilege escalation PoC exploit for CVE-2019-16098☆198Updated 6 years ago