Alternatives and similar repositories for Windows-kernel-SegmentHeap-Aligned-Chunk-Confusion:

Users that are interested in Windows-kernel-SegmentHeap-Aligned-Chunk-Confusion are comparing it to the libraries listed below

• vp777 / Windows-Non-Paged-Pool-Overflow-Exploitation
  Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…
  ☆225Updated 2 years ago
• waleedassar / RestrictedKernelLeaks
  ☆159Updated 3 years ago
• ionescu007 / clfs-docs
  Unofficial Common Log File System (CLFS) Documentation
  ☆176Updated 3 years ago
• lucasg / findrpc
  Idapython script to carve binary for internal RPC structures
  ☆230Updated last year
• 0xcpu / WinAltSyscallHandler
  Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999
  ☆209Updated 5 years ago
• sogeti-esec-lab / RPCForge
  Windows RPC Python fuzzer
  ☆160Updated 7 years ago
• Bw3ll / JOP_ROCKET
  This framework enables user to discover JOP gagdets and can automate building a complete JOP chain to bypass DEP. JOP ROCKET is the ultim…
  ☆104Updated 7 months ago
• VoidSec / ioctlpus
  IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).
  ☆87Updated 3 years ago
• guhe120 / Windows-EoP
  Windows EoP Bugs
  ☆127Updated 4 years ago
• saaramar / 35C3_Modern_Windows_Userspace_Exploitation
  ☆154Updated 6 years ago
• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆201Updated 2 weeks ago
• math1as / Windows-GDI-fuzzer
  Windows Graphics Device Interface (GDI+) fuzzer
  ☆129Updated 4 years ago
• 0xcpu / ExecutiveCallbackObjects
  Research on Windows Kernel Executive Callback Objects
  ☆286Updated 5 years ago
• yardenshafir / PoolViewer
  An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.
  ☆137Updated 2 years ago
• jthuraisamy / ioctlpus
  ☆108Updated 4 years ago
• hhlxf / USO_Info_Leak
  two heap address leak bugs in `usosvc` service
  ☆93Updated 4 years ago
• repnz / apc-research
  APC Internals Research Code
  ☆164Updated 4 years ago
• SinaKarvandi / windbg2ida
  Windbg2ida lets you dump each step in Windbg then shows these steps in IDA
  ☆76Updated 9 months ago
• IOActive / kmdf_re
  Helper idapython code for reversing kmdf drivers
  ☆72Updated 2 years ago
• repnz / ida-plugins
  A collection of my IDA plugins
  ☆134Updated 4 years ago
• yardenshafir / CVE-2020-1034
  PoC demonstrating the use of cve-2020-1034 for privilege escalation
  ☆123Updated 4 years ago
• commial / ttd-bindings
  Bindings for Microsoft WinDBG TTD
  ☆220Updated last year
• cbayet / PoolSprayer
  Simple library to spray the Windows Kernel Pool
  ☆108Updated 5 years ago
• JaanusKaapPublic / HyperViper
  Toolkit for Hyper-V security research
  ☆156Updated 3 years ago
• repnz / autochk-rootkit
  Reverse engineered source code of the autochk rootkit
  ☆201Updated 5 years ago
• waleedassar / SimpleNTSyscallFuzzer
  ☆145Updated last year
• hugsy / windbg_js_scripts
  Toy scripts for playing with WinDbg JS API
  ☆227Updated 9 months ago
• tandasat / SmmExploit
  The report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303…
  ☆137Updated 4 years ago
• vxcute / WindowsInternals
  Yet another windows internals repo
  ☆205Updated 3 years ago
• Signal-Labs / IOCTLDump
  ☆143Updated last year