sam-b / windows_kernel_resourcesLinks
Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits
☆407Updated 5 years ago
Alternatives and similar repositories for windows_kernel_resources
Users that are interested in windows_kernel_resources are comparing it to the libraries listed below
Sorting:
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆438Updated 7 years ago
- Examples of leaking Kernel Mode information from User Mode on Windows☆619Updated 8 years ago
- DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.☆365Updated 5 years ago
- Windows Kernel Drivers fuzzer☆369Updated 8 years ago
- A set of tutorials about code injection for Windows.☆312Updated last year
- windows syscall table from xp ~ 10 rs4☆354Updated 7 years ago
- ☆403Updated 8 years ago
- Pocs for Antivirus Software‘s Kernel Vulnerabilities☆264Updated 8 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆304Updated 6 years ago
- PowerLoaderEx - Advanced Code Injection Technique for x32 / x64☆380Updated 8 years ago
- Have fun with the LowFragmentationHeap☆245Updated 4 years ago
- Incident Response & Digital Forensics Debugging Extension☆381Updated 6 years ago
- Automatically exported from code.google.com/p/ioctlfuzzer☆170Updated 10 years ago
- Cross Platform Kernel Fuzzer Framework☆453Updated 6 years ago
- Public repository for windbglib, a wrapper around pykd.pyd (for Windbg), used by mona.py☆329Updated 2 years ago
- A kernel driver to practice writing exploits against, as well as some example exploits using public techniques.☆406Updated 10 years ago
- A curated list of Hyper-V exploitation resources, fuzzing and vulnerability research.☆432Updated 6 months ago
- ☆236Updated 8 years ago
- Dump of win32k POCs for bugs I've found☆380Updated 3 years ago
- Mirror of users section of rootkit.com☆299Updated 9 years ago
- WinDBG Anti-RootKit Extension☆635Updated 5 years ago
- Content from presentation at BHUSA 2017☆180Updated 8 years ago
- zer0m0n driver for cuckoo sandbox☆363Updated 10 years ago
- Arbitrary code execution with kernel privileges using CVE-2018-8897.☆419Updated 7 years ago
- A Bochs-based instrumentation project designed to log kernel memory references, to identify "double fetches" and other OS vulnerabilities☆340Updated 6 years ago
- My repository to upload drivers from different books and all the information related to windows internals.☆159Updated 6 years ago
- PEDA-like debugger UI for WinDbg☆204Updated last year
- A pintool in order to unpack malware☆236Updated 9 years ago
- Research on Windows Kernel Executive Callback Objects☆309Updated 5 years ago
- CFB is a ProcMon-style tool designed to assist capturing IRPs sent to Windows drivers.☆332Updated last year