therealdreg / masm32-kernel-programming

Related projects ⓘ

Alternatives and complementary repositories for masm32-kernel-programming

• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆79Updated last year
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆111Updated 4 months ago
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆123Updated 2 years ago
• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆148Updated 10 months ago
• mrexodia / phnt-single-header
  Single header version of System Informer's phnt library.
  ☆186Updated last week
• floesen / KExecDD
  Admin to Kernel code execution using the KSecDD driver
  ☆238Updated 7 months ago
• realoriginal / blacklotus
  A attempt at replicating BLACKLOTUS capabilities, whilst not acting as a direct mimic.
  ☆85Updated last year
• behnamshamshirsaz / CrackMaster
  x86/x64 Ring 0/-2 System Freezer/Debugger
  ☆110Updated last month
• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆115Updated 3 months ago
• yardenshafir / IoRingReadWritePrimitive
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆221Updated 2 years ago
• hasherezade / thread_namecalling
  Process Injection using Thread Name
  ☆241Updated 2 months ago
• Fyyre / DrvMon
  Advanced driver monitoring utility.
  ☆201Updated 2 years ago
• struppigel / hedgehog-tools
  ☆111Updated 2 weeks ago
• gabriellandau / ItsNotASecurityBoundary
  ☆142Updated 3 months ago
• buzzer-re / Shinigami
  A dynamic unpacking tool
  ☆128Updated last year
• hasherezade / pe_unmapper
  Small tool to convert beteween the PE alignments (raw and virtual).
  ☆81Updated last year
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆239Updated 2 years ago
• connormcgarr / EATGuard
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆93Updated last year
• frank2 / packer-tutorial
  A tutorial on how to write a packer for Windows!
  ☆248Updated 11 months ago
• realoriginal / angryorchard
  A kernel vulnerability used to achieve arbitrary read-write on Windows prior to July 2022
  ☆105Updated 2 years ago
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆52Updated 7 months ago
• janoglezcampos / llvm-yx-callobfuscator
  LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.
  ☆260Updated 10 months ago
• LloydLabs / ntqueueapcthreadex-ntdll-gadget-injection
  This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and SystemArgument[0-3] parameters by passing a random pop r32; ret …
  ☆231Updated last year
• CaledoniaProject / drivers-binaries
  Exploitable drivers, you know what I mean
  ☆126Updated 7 months ago
• carlos-al / user-kernel-syscall-hook
  ☆82Updated 5 months ago
• Bw3ll / ROP_ROCKET
  ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…
  ☆111Updated 2 months ago
• p0dalirius / pdbdownload
  A Python script to download PDB files associated with a Portable Executable (PE)
  ☆116Updated 4 months ago
• Signal-Labs / IOCTLDump
  ☆135Updated last year
• TakahiroHaruyama / VDR
  Vulnerable driver research tool, result and exploit PoCs
  ☆181Updated last year