ufrisk / kaslrfinder
Kernel Address Space Layout Randomization (KASLR) Recovery Software
☆97Updated 7 years ago
Related projects ⓘ
Alternatives and complementary repositories for kaslrfinder
- Local Kernel Debugger (LKD) is a python wrapper around dbgengine.dll☆92Updated 8 years ago
- I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016☆159Updated 7 years ago
- ☆67Updated 3 years ago
- CansecWest2016 - Getting Physical: Extreme Abuse of Intel Based Paging Systems☆27Updated 8 years ago
- Old mitigation-bounty code that was applicable to edge before it use webkit/chrome☆87Updated 7 years ago
- kernel exploitation helper class☆75Updated 7 years ago
- Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )☆132Updated 8 years ago
- IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.☆106Updated 11 months ago
- ☆59Updated 8 years ago
- ☆91Updated 8 years ago
- Hypervisor-based debugger☆185Updated 3 years ago
- Download all of Microsoft's security updates and symbols☆42Updated 8 years ago
- Augmenting Static Reverse Engineering with Dynamic Analysis and Instrumentation☆131Updated 10 years ago
- Xenpwn is a toolkit for memory access tracing using hardware-assisted virtualization☆143Updated 8 years ago
- ☆73Updated 6 years ago
- A mutation based user mode (ring3) dumb in-memory Windows Kernel (IOCTL) Fuzzer/Logger. This script attach it self to any given process a…☆67Updated 10 years ago
- ☆33Updated 9 years ago
- IDAtropy is a plugin for Hex-Ray's IDA Pro designed to generate charts of entropy and histograms using the power of idapython and matplot…☆135Updated 3 years ago
- Elevation of privilege detector based on HyperPlatform☆117Updated 7 years ago
- Windows SMEP Bypass U=S☆37Updated 8 years ago
- qb-sync is an open source tool to add some helpful glue between IDA Pro and Windbg. Its core feature is to dynamically synchronize IDA's …☆116Updated 9 years ago
- A gadget finder and a ROP-Chainer tool for x86 platforms☆93Updated 3 years ago
- Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE).☆116Updated 6 years ago
- A combination of an IDAPython Plugin and a control version system that result in a new reverse engineering collaborative addon for IDA Pr…☆92Updated 8 years ago
- kernel pool windbg extension☆79Updated 9 years ago
- Using WinDBG to tap into JavaScript and help with deobfuscation and browser exploit detection☆81Updated 7 years ago
- A search tool for IDA☆69Updated 7 years ago