Alternatives and similar repositories for cs_driver:

Users that are interested in cs_driver are comparing it to the libraries listed below

• long123king / tokenext
  A windbg extension, extracting token related contents
  ☆41Updated 4 years ago
• int0 / ltmdm64_poc
  ☆28Updated 7 years ago
• tandasat / CVE-2014-0816
  CVE-2014-0816
  ☆25Updated 8 years ago
• SekoiaLab / BinaryInjectionMitigation
  Two tools used during our analysis of the Microsoft binary injection mitigation implemented in Edge TH2.
  ☆53Updated 8 years ago
• rwfpl / rewolf-ldrdebug
  Helper utility for debugging windows PE/PE+ loader.
  ☆52Updated 10 years ago
• promised-lu / MemoryProtection
  Internet Explorer MemoryProtection Mitigation
  ☆32Updated 10 years ago
• long123king / TokenInsight
  An application for obtaining, dumping and modifying token from user land.
  ☆27Updated 9 years ago
• Prevenity / malware_monitor
  Malware monitor template based on MinHook
  ☆16Updated 10 years ago
• MortenSchenk / tagWnd-Hardening-Bypass
  Bypass for the hardening against usage of tagWnd as a kernel read/write primitive
  ☆29Updated 8 years ago
• sam-b / windows_syscalls_dumper
  A dirty IDAPython script to dump windows system call number/name pairs as JSON
  ☆37Updated 8 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆38Updated 8 years ago
• dev-zzo / ntcore
  Simple standalone bundle of NT core APIs
  ☆26Updated 9 years ago
• changeofpace / Remote-Process-Cookie-for-Windows-7
  Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.
  ☆22Updated 7 years ago
• sam-b / win-driver-tools
  A couple of little tools I've made for working with Windows Drivers
  ☆15Updated 9 years ago
• AlephNull314 / AbsoluteZero
  Anti-AV compilation
  ☆42Updated 11 years ago
• tinysec / runwithdll
  windows create process with a dll load first time via LdrHook
  ☆30Updated 8 years ago
• codingtest / EMET
  reversed emet tool
  ☆24Updated 12 years ago
• AntiRootkit / BDArkit
  just an lite AntiRootkit for interesting
  ☆23Updated 9 years ago
• rmadair / windbg2ida
  Import debugging traces from WinDBG into IDA. Color the graph, fill in the value of all the operands, etc.
  ☆25Updated 12 years ago
• NtRaiseHardError / Providence
  Kernel-mode file scanner
  ☆18Updated 6 years ago
• BreakingMalwareResearch / CFGExceptions
  Adding exceptions to Microsoft's Control Flow Guard (CFG)
  ☆58Updated 8 years ago
• swwwolf / obderef
  Decrement Windows Kernel for fun and profit
  ☆38Updated 7 years ago
• deroko / activationcontexthook
  ☆33Updated 7 years ago
• fdfalcon / TypeIsolationDbg
  A little WinDbg extension to help dump the state of Win32k Type Isolation structures.
  ☆38Updated 7 years ago
• Bareflank / extended_apis_example_hook
  deprecated
  ☆26Updated 6 years ago
• atlantis2013 / Evasion-Tools
  Anti-technique Codes, Detection of Anti-technique codes
  ☆38Updated 11 years ago
• siberas / IDA2Sym
  IDAScript to create Symbol file which can be loaded in WinDbg via AddSyntheticSymbol
  ☆40Updated 10 years ago
• Cr4sh / IDA-UbiGraph
  IDA Pro plug-in and tools for displaying 3D graphs of procedures using UbiGraph
  ☆25Updated 11 years ago
• dro / win10-ida-types
  Windows 10 kernel and ntdll internal types, directly compatible with ida.
  ☆50Updated 6 years ago
• Microwave89 / syscalltest
  PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls
  ☆39Updated 9 years ago