ufrisk / kaslrfinderView external linksLinks
Kernel Address Space Layout Randomization (KASLR) Recovery Software
☆98Nov 26, 2016Updated 9 years ago
Alternatives and similar repositories for kaslrfinder
Users that are interested in kaslrfinder are comparing it to the libraries listed below
Sorting:
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆32Mar 22, 2017Updated 8 years ago
- Microsoft Edge Microsoft Edge主页算法☆20Apr 15, 2019Updated 6 years ago
- IDA PDB Loader☆49Sep 21, 2018Updated 7 years ago
- Event Tracing for Windows Custom Events☆21Jan 28, 2015Updated 11 years ago
- ☆19Mar 16, 2017Updated 8 years ago
- I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016☆171Dec 7, 2016Updated 9 years ago
- Lists work items being queued currently.☆14Jun 7, 2015Updated 10 years ago
- A sample project for using Capstone from a driver in Visual Studio 2015☆36May 4, 2016Updated 9 years ago
- ☆17Mar 3, 2016Updated 9 years ago
- Internet Explorer Exploit with CFG bypass for Windows 10☆59Jan 11, 2017Updated 9 years ago
- Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.☆24Jan 23, 2018Updated 8 years ago
- ☆12Feb 19, 2017Updated 8 years ago
- ☆12Dec 15, 2016Updated 9 years ago
- Hook IDT vector 0xb2 to detect SCI in 64bit windows.☆34Aug 27, 2022Updated 3 years ago
- x64 Windows Software Fault Injection Tool☆17Dec 2, 2017Updated 8 years ago
- Windows device tree walker☆15Sep 19, 2018Updated 7 years ago
- ☆15Jun 12, 2015Updated 10 years ago
- Windows SMEP Bypass U=S☆38Apr 8, 2016Updated 9 years ago
- network filter driver that control network send speed, based on windows tdi framework.☆31Feb 16, 2024Updated last year
- kernel exploitation helper class☆77Nov 26, 2016Updated 9 years ago
- Exploiting CPU-Z Driver To Turn Load Unsigned Drivers☆131Aug 10, 2017Updated 8 years ago
- User-mode kernel callback framework☆10Nov 16, 2013Updated 12 years ago
- IDAScript to create Symbol file which can be loaded in WinDbg via AddSyntheticSymbol☆41Jul 25, 2014Updated 11 years ago
- A windbg extension, extracting token related contents☆41Dec 23, 2020Updated 5 years ago
- A minimal tool to extract shellcode from 64-bit PE binaries.☆54Sep 13, 2021Updated 4 years ago
- createfile☆50Oct 27, 2015Updated 10 years ago
- Test code only. Not reliable for actual use.☆63Jan 1, 2016Updated 10 years ago
- Unlinker is a tool that can rip functions out of Visual C++ compiled binaries and produce Visual C++ COFF object files☆96Nov 1, 2017Updated 8 years ago
- ☆24Jul 24, 2020Updated 5 years ago
- Simple library to spray the Windows Kernel Pool☆110Jan 6, 2020Updated 6 years ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆78Aug 12, 2015Updated 10 years ago
- Win32 API Hook偵測☆10Oct 1, 2017Updated 8 years ago
- MBR manipulation tool☆18Jan 13, 2014Updated 12 years ago
- pass game protect☆12Apr 26, 2014Updated 11 years ago
- ☆12Aug 2, 2017Updated 8 years ago
- Automated Exploit generation with WinDBG☆190Oct 18, 2016Updated 9 years ago
- Two tools used during our analysis of the Microsoft binary injection mitigation implemented in Edge TH2.☆53Feb 15, 2017Updated 9 years ago
- Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis☆41Sep 12, 2016Updated 9 years ago
- ☆18Sep 27, 2016Updated 9 years ago