pwnlogs / d-timeLinks
This repository contains D-TIME: Distributed Threadless Independent Malware Execution for Runtime Obfuscation.
☆37Updated 4 years ago
Alternatives and similar repositories for d-time
Users that are interested in d-time are comparing it to the libraries listed below
Sorting:
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆99Updated 5 years ago
- Extract data of TTD trace file to a minidump☆30Updated 2 years ago
- ☆11Updated 3 years ago
- Helper idapython code for reversing kmdf drivers☆74Updated 3 years ago
- Command like tool to print mitigation flags for running processes in a memory dump☆47Updated 4 years ago
- ☆47Updated 5 years ago
- ☆12Updated 5 years ago
- Local OXID Resolver (LCLOR) : Research and Tooling☆35Updated 4 years ago
- Dumps information about all the callback objects found in a dump file and the functions registered for them☆36Updated 4 years ago
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆93Updated 3 years ago
- Windbg2ida lets you dump each step in Windbg then shows these steps in IDA☆74Updated last year
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆73Updated 2 years ago
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆27Updated 2 years ago
- ☆28Updated 5 years ago
- IOCTL-Flooder is a verbose tool designed to help with Windows driver fuzzing by brute forcing IOCTLs on loaded drivers. GetLastError is u…☆11Updated 7 years ago
- A static analysis tool that helps security researchers scan a list of Windows kernel drivers for common vulnerability patterns in drivers…☆70Updated 3 years ago
- Example for PagedOut!☆25Updated 5 years ago
- ☆41Updated 4 years ago
- ☆18Updated 4 years ago
- Ebfuscator: Abusing system errors for binary obfuscation☆52Updated 5 years ago
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆55Updated 3 years ago
- Windows Drivers☆99Updated 6 years ago
- ☆25Updated last year
- Simple 32/64-bit PEs loader.☆139Updated 6 years ago
- arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system☆57Updated 3 years ago
- Windows API Hashes used in the malwares☆42Updated 10 years ago
- Enumerate user mode shared memory mappings on Windows.☆122Updated 4 years ago
- Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.☆50Updated 5 years ago
- ☆21Updated 3 months ago
- Exploiting ring0 memcpy-like functionality to disable Driver Signing Enforcement (DSE)☆21Updated 5 years ago