sam-b / windows_kernel_resources

Related projects: ⓘ

• sam-b / windows_kernel_address_leaks
  Examples of leaking Kernel Mode information from User Mode on Windows
  ☆574Updated 7 years ago
• FSecureLABS / win_driver_plugin
  A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.
  ☆420Updated 6 years ago
• koutto / ioctlbf
  Windows Kernel Drivers fuzzer
  ☆289Updated 7 years ago
• FSecureLABS / KernelFuzzer
  Cross Platform Kernel Fuzzer Framework
  ☆444Updated 5 years ago
• nccgroup / DriverBuddy
  DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.
  ☆350Updated 4 years ago
• bee13oy / AV_Kernel_Vulns
  Pocs for Antivirus Software‘s Kernel Vulnerabilities
  ☆264Updated 7 years ago
• tinysec / windows-syscall-table
  windows syscall table from xp ~ 10 rs4
  ☆348Updated 6 years ago
• BreakingMalware / PowerLoaderEx
  PowerLoaderEx - Advanced Code Injection Technique for x32 / x64
  ☆356Updated 7 years ago
• 0xAlexei / WindowsDefenderTools
  Tools for instrumenting Windows Defender's mpengine.dll
  ☆271Updated 5 years ago
• Professor-plum / Reflective-Driver-Loader
  ☆390Updated 7 years ago
• peperunas / injectopi
  A set of tutorials about code injection for Windows.
  ☆305Updated 3 weeks ago
• can1357 / CVE-2018-8897
  Arbitrary code execution with kernel privileges using CVE-2018-8897.
  ☆409Updated 6 years ago
• corelan / windbglib
  Public repository for windbglib, a wrapper around pykd.pyd (for Windbg), used by mona.py
  ☆316Updated last year
• Cr4sh / ioctlfuzzer
  Automatically exported from code.google.com/p/ioctlfuzzer
  ☆156Updated 9 years ago
• tyranid / windows-logical-eop-workshop
  ☆227Updated 7 years ago
• MagnetForensics / SwishDbgExt
  Incident Response & Digital Forensics Debugging Extension
  ☆367Updated 5 years ago
• 1111joe1111 / ida_ea
  A set of exploitation/reversing aids for IDA
  ☆415Updated 6 years ago
• googleprojectzero / bochspwn-reloaded
  A Bochs-based instrumentation performing kernel memory taint tracking to detect disclosure of uninitialized memory to ring 3
  ☆284Updated 5 years ago
• googleprojectzero / bochspwn
  A Bochs-based instrumentation project designed to log kernel memory references, to identify "double fetches" and other OS vulnerabilities
  ☆319Updated 5 years ago
• nccgroup / idahunt
  idahunt is a framework to analyze binaries with IDA Pro and hunt for things in IDA Pro
  ☆376Updated 11 months ago
• MortenSchenk / BHUSA2017
  Content from presentation at BHUSA 2017
  ☆179Updated 7 years ago
• hugsy / CFB
  Canadian Furious Beaver is a ProcMon-style tool designed only for capturing IRPs sent to any Windows driver.
  ☆308Updated 5 months ago
• a1ext / labeless
  Labeless is a multipurpose IDA Pro plugin system for labels/comments synchronization with a debugger backend, with complex memory dumping…
  ☆511Updated 2 years ago
• jackullrich / ShellcodeStdio
  An extensible framework for easily writing compiler optimized position independent x86 / x64 shellcode for windows platforms.
  ☆491Updated 5 years ago
• shogunlab / awesome-hyper-v-exploitation
  A curated list of Hyper-V exploitation resources, fuzzing and vulnerability research.
  ☆382Updated 3 years ago
• therealdreg / anticuckoo
  A tool to detect and crash Cuckoo Sandbox
  ☆286Updated last month
• tandasat / scripts_for_RE
  Python scripts for reverse engineering.
  ☆178Updated 3 years ago
• swwwolf / wdbgark
  WinDBG Anti-RootKit Extension
  ☆612Updated 4 years ago
• bruce30262 / TWindbg
  PEDA-like debugger UI for WinDbg
  ☆198Updated 5 months ago
• SkyLined / BugId
  Detect, analyze and uniquely identify crashes in Windows applications
  ☆499Updated 2 months ago