microsoft/SandboxSecurityTools external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

microsoft/SandboxSecurityTools

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/microsoft/SandboxSecurityTools)

Close

microsoft / SandboxSecurityToolsView on GitHubMore

• External links
• Readme badge

Security testing tools for Windows sandboxing technologies

☆184May 5, 2025Updated 11 months ago

Alternatives and similar repositories for SandboxSecurityTools

Users that are interested in SandboxSecurityTools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• forderud / RunInSandbox

  View on GitHub
  Launch Windows executables & COM servers in a sandboxed or elevated process.
  ☆50Jan 27, 2026Updated 3 months ago
• k0keoyo / ksRPC_analysis_script

  View on GitHub
  ☆12Jul 27, 2020Updated 5 years ago
• Sentinel-One / peafl64

  View on GitHub
  Static Binary Instrumentation tool for Windows x64 executables
  ☆204Sep 29, 2025Updated 7 months ago
• synacktiv / Windows-kernel-SegmentHeap-Aligned-Chunk-Confusion

  View on GitHub
  PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap
  ☆214Jul 2, 2020Updated 5 years ago
• waleedassar / CVE-2022-24483

  View on GitHub
  POC For CVE-2022-24483
  ☆15Apr 12, 2022Updated 4 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• vp777 / Windows-Non-Paged-Pool-Overflow-Exploitation

  View on GitHub
  Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…
  ☆262Sep 1, 2022Updated 3 years ago
• CD-R0M / YARA

  View on GitHub
  Hundred Days of Yara Challenge
  ☆12Jun 21, 2022Updated 3 years ago
• afang5472 / CVE-2020-0753-and-CVE-2020-0754

  View on GitHub
  Writeup and POC for CVE-2020-0753, CVE-2020-0754 and six fixed Window DOS Vulnerabilities.
  ☆15Apr 15, 2020Updated 6 years ago
• M2TeamArchived / M2TeamCommonLibrary

  View on GitHub
  M2-Team Common Library
  ☆15Apr 16, 2019Updated 7 years ago
• Vicshann / Common

  View on GitHub
  Some eternal WIP stuff :)
  ☆21Nov 18, 2025Updated 5 months ago
• M2Team / Privexec

  View on GitHub
  Run the program with the specified permission level (C++20 required)
  ☆388Dec 20, 2025Updated 4 months ago
• tyranid / WindowsRpcClients

  View on GitHub
  This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System f…
  ☆285May 14, 2020Updated 5 years ago
• hugsy / pwn--

  View on GitHub
  pwn++ is a Windows & Linux library oriented for exploit dev but mostly used to play with modern C++ features
  ☆171Jun 9, 2025Updated 10 months ago
• gdabah / win32k-bugs

  View on GitHub
  Dump of win32k POCs for bugs I've found
  ☆380Mar 6, 2022Updated 4 years ago
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• yardenshafir / CVE-2020-1034

  View on GitHub
  PoC demonstrating the use of cve-2020-1034 for privilege escalation
  ☆126Mar 16, 2021Updated 5 years ago
• zodiacon / InfStudio

  View on GitHub
  INF Studio for easier working with driver installation files
  ☆39Nov 11, 2023Updated 2 years ago
• Signal-Labs / IOCTLDump

  View on GitHub
  ☆149Jun 5, 2023Updated 2 years ago
• trailofbits / RpcInvestigator

  View on GitHub
  Exploring RPC interfaces on Windows
  ☆351Jan 30, 2024Updated 2 years ago
• jayesther / KTM_POCS

  View on GitHub
  Reports and POCs for CVE 2024-43570 and CVE-2024-43535
  ☆30Jun 7, 2025Updated 10 months ago
• sgabe / SymlinkProtect

  View on GitHub
  File system minifilter driver for Windows to block symbolic link attacks.
  ☆51Dec 16, 2020Updated 5 years ago
• gerhart01 / Hyper-V-Internals

  View on GitHub
  Internals information about Hyper-V
  ☆736Mar 7, 2026Updated last month
• delulu-hq / phnt-rs

  View on GitHub
  Rust bindings to the System Informer's (formerly known as Process Hacker) "phnt" native Windows headers
  ☆51Jun 1, 2025Updated 11 months ago
• microsoft / MSRC-Security-Research

  View on GitHub
  Security Research from the Microsoft Security Response Center (MSRC)
  ☆1,379Aug 8, 2024Updated last year
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• connormcgarr / EATGuard

  View on GitHub
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆115May 21, 2023Updated 2 years ago
• BehroozAbbassi / VmwpMonitor

  View on GitHub
  ☆41Jun 6, 2021Updated 4 years ago
• SB-GC-Labs / hAFL1

  View on GitHub
  ☆139Aug 3, 2021Updated 4 years ago
• KelvinMsft / TechMyths

  View on GitHub
  ☆18Mar 28, 2023Updated 3 years ago
• mel2oo / Driver-for-windows

  View on GitHub
  ☆17Jun 30, 2020Updated 5 years ago
• P1umer / fuzzilli4wasm

  View on GitHub
  A toy Fuzzer for wasm fuzzing based on fuzzilli
  ☆72Apr 8, 2022Updated 4 years ago
• yardenshafir / IoRingReadWritePrimitive

  View on GitHub
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆255Jul 5, 2022Updated 3 years ago
• KiFilterFiberContext / warbird-hook

  View on GitHub
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆267Aug 31, 2022Updated 3 years ago
• 0vercl0k / wtf

  View on GitHub
  wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kerne…
  ☆1,752Jan 2, 2026Updated 4 months ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• freingruber / JavaScript-Raider

  View on GitHub
  JavaScript Fuzzing framework for v8
  ☆144Jan 24, 2022Updated 4 years ago
• csandker / InterProcessCommunication-Samples

  View on GitHub
  Some Code Samples for Windows based Inter-Process-Communication (IPC)
  ☆211Feb 29, 2024Updated 2 years ago
• sgabe / winaflpet

  View on GitHub
  Web user interface and service agent for the monitoring and remote management of WinAFL.
  ☆63Apr 9, 2026Updated 3 weeks ago
• cyberark / RPCMon

  View on GitHub
  RPC Monitor tool based on Event Tracing for Windows
  ☆392Aug 19, 2024Updated last year
• JonathanSalwan / ttexplore

  View on GitHub
  TTexplore is a library that performs path exploration on binary code using symbolic execution
  ☆83Nov 14, 2022Updated 3 years ago
• sam-b / windows_kernel_address_leaks

  View on GitHub
  Examples of leaking Kernel Mode information from User Mode on Windows
  ☆641Jul 7, 2017Updated 8 years ago
• Cisco-Talos / Windows-drivers-GDT-file

  View on GitHub
  Ghidra data type archive for Windows driver analysis
  ☆30Oct 10, 2024Updated last year