Alternatives and similar repositories for masm32-kernel-programming:

Users that are interested in masm32-kernel-programming are comparing it to the libraries listed below

• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆148Updated last year
• Fyyre / DrvMon
  Advanced driver monitoring utility.
  ☆203Updated 2 years ago
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆79Updated last year
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆115Updated 7 months ago
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆243Updated 2 years ago
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆115Updated last year
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆135Updated 2 years ago
• struppigel / hedgehog-tools
  ☆111Updated this week
• tandasat / hvext
  The Windbg extensions to study Hyper-V on Intel and AMD processors.
  ☆147Updated this week
• p0dalirius / pyPDBdownload
  A Python script to download PDB files associated with a Portable Executable (PE)
  ☆119Updated last week
• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆125Updated 5 months ago
• mrexodia / phnt-single-header
  Single header version of System Informer's phnt library.
  ☆190Updated this week
• zeze-zeze / ioctlance
  A tool that is used to hunt vulnerabilities in x64 WDM drivers
  ☆173Updated last year
• Signal-Labs / IOCTLDump
  ☆141Updated last year
• buzzer-re / Shinigami
  A dynamic unpacking tool
  ☆132Updated last year
• yardenshafir / IoRingReadWritePrimitive
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆224Updated 2 years ago
• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆196Updated 2 weeks ago
• floesen / KExecDD
  Admin to Kernel code execution using the KSecDD driver
  ☆243Updated 10 months ago
• jk45054 / CTF-writeups
  Writeups for CTF challenges
  ☆30Updated last year
• VoidSec / ioctlpus
  IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).
  ☆88Updated 3 years ago
• behnamshamshirsaz / CrackMaster
  x86/x64 Ring 0/-2 System Freezer/Debugger
  ☆117Updated 2 months ago
• Bw3ll / ROP_ROCKET
  ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…
  ☆115Updated 5 months ago
• xalicex / kernel-debug-lab-for-virtual-box
  How to set up 2 VirtualBox VM to debug kernel driver using windbg
  ☆52Updated 2 years ago
• manyfacedllama / amsi-tracer
  Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …
  ☆108Updated 3 years ago
• hasherezade / pe_unmapper
  Small tool to convert beteween the PE alignments (raw and virtual).
  ☆85Updated 2 years ago
• TakahiroHaruyama / VDR
  Vulnerable driver research tool, result and exploit PoCs
  ☆184Updated last year
• hasherezade / thread_namecalling
  Process Injection using Thread Name
  ☆246Updated 5 months ago
• hasherezade / mal_unpack_drv
  MalUnpack companion driver
  ☆93Updated 8 months ago
• jstrosch / sclauncher
  A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …
  ☆134Updated 7 months ago
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆53Updated 9 months ago