tandasat / cs_driverLinks
A sample project for using Capstone from a driver in Visual Studio 2015
☆34Updated 9 years ago
Alternatives and similar repositories for cs_driver
Users that are interested in cs_driver are comparing it to the libraries listed below
Sorting:
- ☆28Updated 8 years ago
- CVE-2014-0816☆25Updated 8 years ago
- Two tools used during our analysis of the Microsoft binary injection mitigation implemented in Edge TH2.☆53Updated 8 years ago
- A windbg extension, extracting token related contents☆41Updated 4 years ago
- Internet Explorer MemoryProtection Mitigation☆32Updated 10 years ago
- Helper utility for debugging windows PE/PE+ loader.☆52Updated 10 years ago
- Import debugging traces from WinDBG into IDA. Color the graph, fill in the value of all the operands, etc.☆25Updated 12 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆29Updated 8 years ago
- windows create process with a dll load first time via LdrHook☆30Updated 8 years ago
- A couple of little tools I've made for working with Windows Drivers☆15Updated 9 years ago
- Simple standalone bundle of NT core APIs☆26Updated 9 years ago
- 微软7月布丁增加内存 延迟释放机制☆11Updated 10 years ago
- Anti-AV compilation☆43Updated 11 years ago
- A dirty IDAPython script to dump windows system call number/name pairs as JSON☆37Updated 8 years ago
- x64 Windows Software Fault Injection Tool☆17Updated 7 years ago
- Old exploits and code for my self-referencing PML4 technique (2014)☆31Updated 10 years ago
- IDAScript to create Symbol file which can be loaded in WinDbg via AddSyntheticSymbol☆40Updated 10 years ago
- Logs instruction hits to a file which can be fed into IDA Pro to highlight which instructions were called.☆41Updated 11 years ago
- deprecated☆26Updated 6 years ago
- Bootkits Revisited☆41Updated 10 years ago
- Anti-technique Codes, Detection of Anti-technique codes☆38Updated 11 years ago
- PCAUSA Rawether for Windows Local Privilege Escalation☆38Updated 8 years ago
- ☆49Updated 8 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22Updated 8 years ago
- API logger plugin for Intel Pintool☆14Updated 7 years ago
- Tiny project with that demonstrates how to enable Return Flow Guard☆12Updated 8 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆58Updated 8 years ago
- Windows SMEP Bypass U=S☆37Updated 9 years ago
- Malware monitor template based on MinHook☆16Updated 10 years ago
- PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls☆38Updated 9 years ago