Alternatives and similar repositories for cs_driver

Users that are interested in cs_driver are comparing it to the libraries listed below

• int0 / ltmdm64_poc
  ☆28Updated 8 years ago
• SekoiaLab / BinaryInjectionMitigation
  Two tools used during our analysis of the Microsoft binary injection mitigation implemented in Edge TH2.
  ☆53Updated 8 years ago
• long123king / tokenext
  A windbg extension, extracting token related contents
  ☆41Updated 4 years ago
• rwfpl / rewolf-ldrdebug
  Helper utility for debugging windows PE/PE+ loader.
  ☆52Updated 10 years ago
• tandasat / CVE-2014-0816
  CVE-2014-0816
  ☆25Updated 8 years ago
• promised-lu / MemoryProtection
  Internet Explorer MemoryProtection Mitigation
  ☆32Updated 10 years ago
• sam-b / win-driver-tools
  A couple of little tools I've made for working with Windows Drivers
  ☆15Updated 9 years ago
• MortenSchenk / tagWnd-Hardening-Bypass
  Bypass for the hardening against usage of tagWnd as a kernel read/write primitive
  ☆29Updated 8 years ago
• rmadair / windbg2ida
  Import debugging traces from WinDBG into IDA. Color the graph, fill in the value of all the operands, etc.
  ☆25Updated 12 years ago
• n3k / EKOParty2015_Windows_SMEP_Bypass
  Windows SMEP Bypass U=S
  ☆37Updated 9 years ago
• exp-sky / MemoryProtection
  微软7月布丁增加内存延迟释放机制
  ☆11Updated 10 years ago
• dougallj / dj_ida_plugins
  Plugins for IDA Pro and Hex-Rays
  ☆42Updated 7 years ago
• evandowning / windbg-trace
  Use WinDBG to trace the Windows API calls of any Portable Executable file
  ☆31Updated 8 years ago
• Winbagility / Winbagility
  [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;
  ☆74Updated 6 years ago
• sam-b / windows_syscalls_dumper
  A dirty IDAPython script to dump windows system call number/name pairs as JSON
  ☆37Updated 8 years ago
• siberas / IDA2Sym
  IDAScript to create Symbol file which can be loaded in WinDbg via AddSyntheticSymbol
  ☆40Updated 10 years ago
• AlephNull314 / AbsoluteZero
  Anti-AV compilation
  ☆43Updated 11 years ago
• long123king / TokenInsight
  An application for obtaining, dumping and modifying token from user land.
  ☆27Updated 9 years ago
• fvrmatteo / DeobfuscatorTest
  ☆24Updated 9 years ago
• sogeti-esec-lab / REBoot
  Bootkits Revisited
  ☆40Updated 11 years ago
• Prevenity / malware_monitor
  Malware monitor template based on MinHook
  ☆16Updated 10 years ago
• Rootkitsmm-zz / CVEXX-XX
  Windows kernel vulnerability in win32k.sys Driver
  ☆35Updated 9 years ago
• wirepair / IDAPinLogger
  Logs instruction hits to a file which can be fed into IDA Pro to highlight which instructions were called.
  ☆41Updated 11 years ago
• tinysec / runwithdll
  windows create process with a dll load first time via LdrHook
  ☆30Updated 8 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆38Updated 8 years ago
• helpsystems / GDIObjDump
  ☆35Updated 9 years ago
• sam-b / HackSysDriverExploits
  ☆50Updated 8 years ago
• JeremyFetiveau / Exploits
  Old exploits and code for my self-referencing PML4 technique (2014)
  ☆32Updated 10 years ago
• RanchoIce / 44Con2018
  Slides of 44Con 2018
  ☆21Updated 6 years ago
• dev-zzo / ntcore
  Simple standalone bundle of NT core APIs
  ☆26Updated 9 years ago