microsoft/SandboxSecurityTools external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

microsoft/SandboxSecurityTools

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/microsoft/SandboxSecurityTools)

Close

microsoft / SandboxSecurityToolsView on GitHubMore

• External links
• Readme badge

Security testing tools for Windows sandboxing technologies

☆187May 5, 2025Updated last year

Alternatives and similar repositories for SandboxSecurityTools

Users that are interested in SandboxSecurityTools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• forderud / RunInSandbox

  View on GitHub
  Launch Windows executables & COM servers in a sandboxed or elevated process.
  ☆51Jan 27, 2026Updated 4 months ago
• k0keoyo / ksRPC_analysis_script

  View on GitHub
  ☆12Jul 27, 2020Updated 5 years ago
• Sentinel-One / peafl64

  View on GitHub
  Static Binary Instrumentation tool for Windows x64 executables
  ☆205Sep 29, 2025Updated 8 months ago
• synacktiv / Windows-kernel-SegmentHeap-Aligned-Chunk-Confusion

  View on GitHub
  PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap
  ☆211Jul 2, 2020Updated 5 years ago
• waleedassar / CVE-2022-24483

  View on GitHub
  POC For CVE-2022-24483
  ☆13Apr 12, 2022Updated 4 years ago
• Bare Metal GPUs on DigitalOcean Gradient AI • Ad
  Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
• vp777 / Windows-Non-Paged-Pool-Overflow-Exploitation

  View on GitHub
  Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…
  ☆261Sep 1, 2022Updated 3 years ago
• CD-R0M / YARA

  View on GitHub
  Hundred Days of Yara Challenge
  ☆12Jun 21, 2022Updated 3 years ago
• afang5472 / CVE-2020-0753-and-CVE-2020-0754

  View on GitHub
  Writeup and POC for CVE-2020-0753, CVE-2020-0754 and six fixed Window DOS Vulnerabilities.
  ☆14Apr 15, 2020Updated 6 years ago
• M2TeamArchived / M2TeamCommonLibrary

  View on GitHub
  M2-Team Common Library
  ☆15Apr 16, 2019Updated 7 years ago
• Vicshann / Common

  View on GitHub
  Some eternal WIP stuff :)
  ☆21Nov 18, 2025Updated 6 months ago
• M2Team / Privexec

  View on GitHub
  Run the program with the specified permission level (C++20 required)
  ☆390Dec 20, 2025Updated 5 months ago
• tyranid / WindowsRpcClients

  View on GitHub
  This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System f…
  ☆286May 14, 2020Updated 6 years ago
• hugsy / pwn--

  View on GitHub
  pwn++ is a Windows & Linux library oriented for exploit dev but mostly used to play with modern C++ features
  ☆175Jun 9, 2025Updated last year
• gdabah / win32k-bugs

  View on GitHub
  Dump of win32k POCs for bugs I've found
  ☆379Mar 6, 2022Updated 4 years ago
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• yardenshafir / CVE-2020-1034

  View on GitHub
  PoC demonstrating the use of cve-2020-1034 for privilege escalation
  ☆124Mar 16, 2021Updated 5 years ago
• zodiacon / InfStudio

  View on GitHub
  INF Studio for easier working with driver installation files
  ☆39Nov 11, 2023Updated 2 years ago
• Signal-Labs / IOCTLDump

  View on GitHub
  ☆149Jun 5, 2023Updated 3 years ago
• trailofbits / RpcInvestigator

  View on GitHub
  Exploring RPC interfaces on Windows
  ☆360Jan 30, 2024Updated 2 years ago
• jayesther / KTM_POCS

  View on GitHub
  Reports and POCs for CVE 2024-43570 and CVE-2024-43535
  ☆31Jun 7, 2025Updated last year
• sgabe / SymlinkProtect

  View on GitHub
  File system minifilter driver for Windows to block symbolic link attacks.
  ☆51Dec 16, 2020Updated 5 years ago
• gerhart01 / Hyper-V-Internals

  View on GitHub
  Internals information about Hyper-V
  ☆738May 6, 2026Updated last month
• delulu-hq / phnt-rs

  View on GitHub
  Rust bindings to the System Informer's (formerly known as Process Hacker) "phnt" native Windows headers
  ☆50Jun 1, 2025Updated last year
• microsoft / MSRC-Security-Research

  View on GitHub
  Security Research from the Microsoft Security Response Center (MSRC)
  ☆1,384Aug 8, 2024Updated last year
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• connormcgarr / EATGuard

  View on GitHub
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆115May 21, 2023Updated 3 years ago
• BehroozAbbassi / VmwpMonitor

  View on GitHub
  ☆41Jun 6, 2021Updated 5 years ago
• KelvinMsft / TechMyths

  View on GitHub
  ☆18Mar 28, 2023Updated 3 years ago
• SB-GC-Labs / hAFL1

  View on GitHub
  ☆141Aug 3, 2021Updated 4 years ago
• mel2oo / Driver-for-windows

  View on GitHub
  ☆17Jun 30, 2020Updated 5 years ago
• P1umer / fuzzilli4wasm

  View on GitHub
  A toy Fuzzer for wasm fuzzing based on fuzzilli
  ☆71Apr 8, 2022Updated 4 years ago
• yardenshafir / IoRingReadWritePrimitive

  View on GitHub
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆256Jul 5, 2022Updated 3 years ago
• KiFilterFiberContext / warbird-hook

  View on GitHub
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆272Aug 31, 2022Updated 3 years ago
• freingruber / JavaScript-Raider

  View on GitHub
  JavaScript Fuzzing framework for v8
  ☆143Jan 24, 2022Updated 4 years ago
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• 0vercl0k / wtf

  View on GitHub
  wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kerne…
  ☆1,766Jan 2, 2026Updated 5 months ago
• csandker / InterProcessCommunication-Samples

  View on GitHub
  Some Code Samples for Windows based Inter-Process-Communication (IPC)
  ☆211Feb 29, 2024Updated 2 years ago
• huntandhackett / AfdSocketViewer

  View on GitHub
  A console tool for inspecting Windows Ancillary Function Driver sockets
  ☆22May 15, 2025Updated last year
• sgabe / winaflpet

  View on GitHub
  Web user interface and service agent for the monitoring and remote management of WinAFL.
  ☆63Apr 9, 2026Updated 2 months ago
• JonathanSalwan / ttexplore

  View on GitHub
  TTexplore is a library that performs path exploration on binary code using symbolic execution
  ☆83Nov 14, 2022Updated 3 years ago
• sam-b / windows_kernel_address_leaks

  View on GitHub
  Examples of leaking Kernel Mode information from User Mode on Windows
  ☆642Jul 7, 2017Updated 8 years ago
• cyberark / RPCMon

  View on GitHub
  RPC Monitor tool based on Event Tracing for Windows
  ☆400Aug 19, 2024Updated last year