Alternatives and similar repositories for hdroot-bootkit-analysis

Users that are interested in hdroot-bootkit-analysis are comparing it to the libraries listed below

• Cn33liz / HSEVD-StackOverflowX64
  HackSys Extreme Vulnerable Driver - Windows 10 x64 StackOverflow Exploit with SMEP Bypass
  ☆63Updated 7 years ago
• deroko / payloadrestrictions
  ☆34Updated 7 years ago
• vallejocc / PoC-Inject-Data-WM_COPYDATA
  A tiny PoC to inject and execute code into explorer.exe with WM_SETTEXT+WM_COPYDATA+SetThreadContext
  ☆50Updated 7 years ago
• helpsystems / Agafi
  A gadget finder and a ROP-Chainer tool for x86 platforms
  ☆94Updated 4 years ago
• MortenSchenk / Token-Stealing-Shellcode
  ☆51Updated 8 years ago
• helpsystems / GDIObjDump
  ☆35Updated 9 years ago
• abatchy17 / HEVD-Exploits
  Exploit code used for the HackSysExtremeVulnerableDriver.
  ☆43Updated 6 years ago
• x64dbg / x64dbgpylib
  Port of windbglib to x64dbgpy, in an effort to support mona.py in x64dbg.
  ☆51Updated 5 years ago
• Microwave89 / syscalltest
  PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls
  ☆38Updated 9 years ago
• Cn33liz / HSEVD-StackCookieBypass
  HackSys Extreme Vulnerable Driver - StackOverflow with Stack Cookie Bypass Exploit
  ☆18Updated 8 years ago
• FSecureLABS / CVE-2016-7255
  An exploit for CVE-2016-7255 on Windows 7/8/8.1/10(pre-anniversary) 64 bit
  ☆81Updated 8 years ago
• rwfpl / rewolf-gogogadget
  kernel exploitation helper class
  ☆77Updated 8 years ago
• FSecureLABS / defcon25_uac_workshop
  UAC 0Day all day!
  ☆57Updated 7 years ago
• nmulasmajic / syscall_exploit_CVE-2018-8897
  Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE).
  ☆117Updated 6 years ago
• Cn33liz / HSEVD-StackOverflow
  HackSys Extreme Vulnerable Driver - StackOverflow Exploit
  ☆31Updated 8 years ago
• atlantis2013 / Evasion-Tools
  Anti-technique Codes, Detection of Anti-technique codes
  ☆38Updated 11 years ago
• BorjaMerino / tlsInjector
  Python script to inject and run shellcodes through TLS callbacks
  ☆49Updated 10 years ago
• de7ec7ed / CVE-2016-0040
  CVE-2016-0040 Privilege Escalation Exploit For WMI Receive Notification Vulnerability (x86-64)
  ☆14Updated 7 years ago
• k0keoyo / HEVD-Arbitrary-Overwrite-Exploit-Win10-rs3
  ☆34Updated 7 years ago
• JeremyFetiveau / Exploits
  Old exploits and code for my self-referencing PML4 technique (2014)
  ☆32Updated 10 years ago
• RISCYBusiness / Jadoube
  ☆22Updated 7 years ago
• kukfa / bindbg
  Binary Ninja plugin that syncs WinDbg to Binary Ninja
  ☆47Updated 7 years ago
• IOActive / FuzzNDIS
  A Fuzzer for Windows NDIS Drivers OID Handlers
  ☆94Updated 3 years ago
• sam-b / HackSysDriverExploits
  ☆50Updated 8 years ago
• n3k / EKOParty2015_Windows_SMEP_Bypass
  Windows SMEP Bypass U=S
  ☆37Updated 9 years ago
• Cn33liz / HSEVD-ArbitraryOverwriteGDI
  HackSys Extreme Vulnerable Driver - ArbitraryOverwrite Exploit using GDI
  ☆41Updated 8 years ago
• sam-b / windows_syscalls_dumper
  A dirty IDAPython script to dump windows system call number/name pairs as JSON
  ☆37Updated 8 years ago
• BreakingMalwareResearch / Captain-Hook
  ☆51Updated 8 years ago
• theevilbit / kex
  ☆91Updated 5 years ago
• N3mes1s / ioctlbf
  Automatically exported from code.google.com/p/ioctlbf
  ☆16Updated 10 years ago